Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie

Type deb

Namespace debian

Name qemu

Version 1:2.4+dfsg-1a

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 1:2.4+dfsg-2

Latest_non_vulnerable_version 1:11.0.0+ds-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-25bh-a224-2kb9

vulnerability_id VCID-25bh-a224-2kb9

summary

A heap-based buffer overflow in QEMU could result in execution of
    arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5158.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5158.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5158

reference_id

reference_type

scores

value	0.00081
scoring_system	epss
scoring_elements	0.23827
published_at	2026-04-21T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23847
published_at	2026-04-18T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2387
published_at	2026-04-01T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2399
published_at	2026-04-02T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.24029
published_at	2026-04-04T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23815
published_at	2026-04-07T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23881
published_at	2026-04-08T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23928
published_at	2026-04-09T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23944
published_at	2026-04-11T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.239
published_at	2026-04-12T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23846
published_at	2026-04-13T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23858
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5158

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5158
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5158

reference_url	https://lists.nongnu.org/archive/html/qemu-devel/2015-07/msg04558.html
reference_id
reference_type
scores
url	https://lists.nongnu.org/archive/html/qemu-devel/2015-07/msg04558.html

reference_url	http://www.securityfocus.com/bid/76016
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/76016

reference_url	http://www.securitytracker.com/id/1033095
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1033095

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1244332
reference_id	1244332
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1244332

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793388
reference_id	793388
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793388

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu::::::::
reference_id	cpe:2.3:a:qemu:qemu::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.4.0:-::::::
reference_id	cpe:2.3:a:qemu:qemu:2.4.0:-::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.4.0:-::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.4.0:rc1::::::
reference_id	cpe:2.3:a:qemu:qemu:2.4.0:rc1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.4.0:rc1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.4.0:rc2::::::
reference_id	cpe:2.3:a:qemu:qemu:2.4.0:rc2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.4.0:rc2::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-5158

reference_id

CVE-2015-5158

reference_type

scores

value	2.1
scoring_system	cvssv2
scoring_elements	AV:L/AC:L/Au:N/C:N/I:N/A:P

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2015-5158

reference_url	https://security.gentoo.org/glsa/201510-02
reference_id	GLSA-201510-02
reference_type
scores
url	https://security.gentoo.org/glsa/201510-02

reference_url	https://usn.ubuntu.com/2692-1/
reference_id	USN-2692-1
reference_type
scores
url	https://usn.ubuntu.com/2692-1/

fixed_packages

url	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
purl	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

aliases CVE-2015-5158

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-25bh-a224-2kb9

url VCID-7gt7-r3j9-cbb3

vulnerability_id VCID-7gt7-r3j9-cbb3

summary

A heap-based buffer overflow in QEMU could result in execution of
    arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3214.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3214.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3214

reference_id

reference_type

scores

value	0.01593
scoring_system	epss
scoring_elements	0.81596
published_at	2026-04-01T12:55:00Z

value	0.01593
scoring_system	epss
scoring_elements	0.81607
published_at	2026-04-02T12:55:00Z

value	0.01593
scoring_system	epss
scoring_elements	0.81628
published_at	2026-04-04T12:55:00Z

value	0.01593
scoring_system	epss
scoring_elements	0.81626
published_at	2026-04-07T12:55:00Z

value	0.01593
scoring_system	epss
scoring_elements	0.81653
published_at	2026-04-08T12:55:00Z

value	0.01593
scoring_system	epss
scoring_elements	0.81658
published_at	2026-04-13T12:55:00Z

value	0.01593
scoring_system	epss
scoring_elements	0.81678
published_at	2026-04-11T12:55:00Z

value	0.01593
scoring_system	epss
scoring_elements	0.81665
published_at	2026-04-12T12:55:00Z

value	0.01593
scoring_system	epss
scoring_elements	0.81697
published_at	2026-04-18T12:55:00Z

value	0.01593
scoring_system	epss
scoring_elements	0.81701
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3214

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1229640
reference_id	1229640
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1229640

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795461
reference_id	795461
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795461

reference_url	https://code.google.com/p/google-security-research/issues/detail?id=419#c4
reference_id	CVE-2015-3214;OSVDB-123468
reference_type	exploit
scores
url	https://code.google.com/p/google-security-research/issues/detail?id=419#c4

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/37990.txt
reference_id	CVE-2015-3214;OSVDB-123468
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/37990.txt

reference_url	https://security.gentoo.org/glsa/201510-02
reference_id	GLSA-201510-02
reference_type
scores
url	https://security.gentoo.org/glsa/201510-02

reference_url	https://access.redhat.com/errata/RHSA-2015:1507
reference_id	RHSA-2015:1507
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1507

reference_url	https://access.redhat.com/errata/RHSA-2015:1508
reference_id	RHSA-2015:1508
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1508

reference_url	https://access.redhat.com/errata/RHSA-2015:1512
reference_id	RHSA-2015:1512
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1512

reference_url	https://usn.ubuntu.com/2692-1/
reference_id	USN-2692-1
reference_type
scores
url	https://usn.ubuntu.com/2692-1/

fixed_packages

url	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
purl	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

aliases CVE-2015-3214

risk_score null

exploitability 2.0

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7gt7-r3j9-cbb3

url VCID-8pkj-jwhg-3ub7

vulnerability_id VCID-8pkj-jwhg-3ub7

summary Use after free in QEMU/Xen block unplug protocol

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5166.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5166.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5166

reference_id

reference_type

scores

value	0.00072
scoring_system	epss
scoring_elements	0.21909
published_at	2026-04-01T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22071
published_at	2026-04-02T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22122
published_at	2026-04-04T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21897
published_at	2026-04-07T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21978
published_at	2026-04-08T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22032
published_at	2026-04-09T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22047
published_at	2026-04-11T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22006
published_at	2026-04-12T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21947
published_at	2026-04-16T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21944
published_at	2026-04-18T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21901
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5166

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5166
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5166

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1248997
reference_id	1248997
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1248997

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=794611
reference_id	794611
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=794611

reference_url	https://usn.ubuntu.com/2724-1/
reference_id	USN-2724-1
reference_type
scores
url	https://usn.ubuntu.com/2724-1/

reference_url	https://xenbits.xen.org/xsa/advisory-139.html
reference_id	XSA-139
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-139.html

fixed_packages

url	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
purl	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

aliases CVE-2015-5166

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8pkj-jwhg-3ub7

url VCID-cr8f-zaj3-mkg5

vulnerability_id VCID-cr8f-zaj3-mkg5

summary

Multiple vulnerabilities have been found in QEMU, the worst of
    which may allow a remote attacker to cause a Denial of Service or gain
    elevated privileges from a guest VM.

references

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169039.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169039.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165484.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165484.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166798.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166798.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-1772.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-1772.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-1837.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-1837.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5225.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5225.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5225

reference_id

reference_type

scores

value	0.00167
scoring_system	epss
scoring_elements	0.37855
published_at	2026-04-21T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37939
published_at	2026-04-16T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.3779
published_at	2026-04-01T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37972
published_at	2026-04-02T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37997
published_at	2026-04-04T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37876
published_at	2026-04-07T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37926
published_at	2026-04-08T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37938
published_at	2026-04-09T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37955
published_at	2026-04-11T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37918
published_at	2026-04-18T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37893
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5225

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv2
scoring_elements	AV:A/AC:H/Au:S/C:C/I:C/A:C

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.gnu.org/archive/html/qemu-devel/2015-08/msg02495.html
reference_id
reference_type
scores
url	https://lists.gnu.org/archive/html/qemu-devel/2015-08/msg02495.html

reference_url	https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html
reference_id
reference_type
scores
url	https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html

reference_url	http://www.debian.org/security/2015/dsa-3348
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3348

reference_url	http://www.openwall.com/lists/oss-security/2015/08/21/6
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2015/08/21/6

reference_url	http://www.securityfocus.com/bid/76506
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/76506

reference_url	http://www.securitytracker.com/id/1033547
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1033547

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1255896
reference_id	1255896
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1255896

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796465
reference_id	796465
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796465

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu::::::::
reference_id	cpe:2.3:a:qemu:qemu::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:5.0:::::::*
reference_id	cpe:2.3:a:redhat:openstack:5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:5.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:6.0:::::::*
reference_id	cpe:2.3:a:redhat:openstack:6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:7.0:::::::*
reference_id	cpe:2.3:a:redhat:openstack:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:21:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:21:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:22:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:23:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:23:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:23:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-5225

reference_id

CVE-2015-5225

reference_type

scores

value	7.2
scoring_system	cvssv2
scoring_elements	AV:L/AC:L/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2015-5225

reference_url	https://security.gentoo.org/glsa/201602-01
reference_id	GLSA-201602-01
reference_type
scores
url	https://security.gentoo.org/glsa/201602-01

reference_url	https://access.redhat.com/errata/RHSA-2015:1772
reference_id	RHSA-2015:1772
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1772

reference_url	https://access.redhat.com/errata/RHSA-2015:1837
reference_id	RHSA-2015:1837
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1837

reference_url	https://usn.ubuntu.com/2724-1/
reference_id	USN-2724-1
reference_type
scores
url	https://usn.ubuntu.com/2724-1/

fixed_packages

url	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
purl	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

aliases CVE-2015-5225

risk_score 3.2

exploitability 0.5

weighted_severity 6.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cr8f-zaj3-mkg5

url VCID-ctp4-ekzn-rycw

vulnerability_id VCID-ctp4-ekzn-rycw

summary Qemu: OOB access in address_space_rw leads to segmentation fault

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8817.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8817.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-8817

reference_id

reference_type

scores

value	0.00088
scoring_system	epss
scoring_elements	0.25127
published_at	2026-04-01T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25207
published_at	2026-04-02T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25247
published_at	2026-04-04T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25019
published_at	2026-04-07T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25087
published_at	2026-04-08T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25131
published_at	2026-04-09T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25146
published_at	2026-04-11T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25104
published_at	2026-04-12T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25051
published_at	2026-04-13T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25062
published_at	2026-04-16T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25054
published_at	2026-04-18T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25026
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-8817

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8817
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8817

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1300771
reference_id	1300771
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1300771

reference_url	https://access.redhat.com/errata/RHSA-2016:2670
reference_id	RHSA-2016:2670
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2670

reference_url	https://access.redhat.com/errata/RHSA-2016:2671
reference_id	RHSA-2016:2671
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2671

reference_url	https://access.redhat.com/errata/RHSA-2016:2704
reference_id	RHSA-2016:2704
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2704

reference_url	https://access.redhat.com/errata/RHSA-2016:2705
reference_id	RHSA-2016:2705
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2705

reference_url	https://access.redhat.com/errata/RHSA-2016:2706
reference_id	RHSA-2016:2706
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2706

fixed_packages

url	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
purl	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

aliases CVE-2015-8817

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ctp4-ekzn-rycw

url VCID-hqnb-2gxt-rke6

vulnerability_id VCID-hqnb-2gxt-rke6

summary

Multiple vulnerabilities have been found in QEMU, the worst of
    which may allow a remote attacker to cause a Denial of Service or gain
    elevated privileges from a guest VM.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5745.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5745.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5745

reference_id

reference_type

scores

value	0.01921
scoring_system	epss
scoring_elements	0.83391
published_at	2026-04-21T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.83284
published_at	2026-04-01T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.833
published_at	2026-04-02T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.83315
published_at	2026-04-07T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.83339
published_at	2026-04-08T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.83348
published_at	2026-04-09T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.83363
published_at	2026-04-11T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.83357
published_at	2026-04-12T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.83353
published_at	2026-04-13T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.83389
published_at	2026-04-16T12:55:00Z

value	0.01921
scoring_system	epss
scoring_elements	0.8339
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv2
scoring_elements	AV:A/AC:H/Au:N/C:N/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1251157
reference_id	1251157
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1251157

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795087
reference_id	795087
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795087

reference_url	https://security.gentoo.org/glsa/201602-01
reference_id	GLSA-201602-01
reference_type
scores
url	https://security.gentoo.org/glsa/201602-01

reference_url	https://usn.ubuntu.com/2724-1/
reference_id	USN-2724-1
reference_type
scores
url	https://usn.ubuntu.com/2724-1/

fixed_packages

url	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
purl	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

aliases CVE-2015-5745

risk_score 0.8

exploitability 0.5

weighted_severity 1.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hqnb-2gxt-rke6

url VCID-k2hn-s3df-3udm

vulnerability_id VCID-k2hn-s3df-3udm

summary Qemu: OOB access in address_space_rw leads to segmentation fault

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8818.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8818.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-8818

reference_id

reference_type

scores

value	0.00094
scoring_system	epss
scoring_elements	0.263
published_at	2026-04-01T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26341
published_at	2026-04-02T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26381
published_at	2026-04-04T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26154
published_at	2026-04-07T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26222
published_at	2026-04-08T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.2627
published_at	2026-04-09T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26276
published_at	2026-04-11T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26231
published_at	2026-04-12T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26172
published_at	2026-04-13T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26176
published_at	2026-04-16T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26151
published_at	2026-04-18T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26113
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-8818

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8818
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8818

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1300771
reference_id	1300771
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1300771

reference_url	https://access.redhat.com/errata/RHSA-2016:2670
reference_id	RHSA-2016:2670
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2670

reference_url	https://access.redhat.com/errata/RHSA-2016:2671
reference_id	RHSA-2016:2671
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2671

reference_url	https://access.redhat.com/errata/RHSA-2016:2704
reference_id	RHSA-2016:2704
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2704

reference_url	https://access.redhat.com/errata/RHSA-2016:2705
reference_id	RHSA-2016:2705
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2705

reference_url	https://access.redhat.com/errata/RHSA-2016:2706
reference_id	RHSA-2016:2706
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2706

fixed_packages

url	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
purl	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

aliases CVE-2015-8818

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k2hn-s3df-3udm

url VCID-uyct-zk7n-sbcz

vulnerability_id VCID-uyct-zk7n-sbcz

summary QEMU heap overflow flaw while processing certain ATAPI commands.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5154.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5154.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5154

reference_id

reference_type

scores

value	0.00388
scoring_system	epss
scoring_elements	0.59753
published_at	2026-04-01T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.59827
published_at	2026-04-02T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.59851
published_at	2026-04-04T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.59821
published_at	2026-04-07T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.59872
published_at	2026-04-13T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.59885
published_at	2026-04-09T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.59906
published_at	2026-04-11T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.59891
published_at	2026-04-12T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.5991
published_at	2026-04-16T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.59917
published_at	2026-04-18T12:55:00Z

value	0.00388
scoring_system	epss
scoring_elements	0.59903
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5154

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1243563
reference_id	1243563
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1243563

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793811
reference_id	793811
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793811

reference_url	https://security.gentoo.org/glsa/201510-02
reference_id	GLSA-201510-02
reference_type
scores
url	https://security.gentoo.org/glsa/201510-02

reference_url	https://security.gentoo.org/glsa/201604-03
reference_id	GLSA-201604-03
reference_type
scores
url	https://security.gentoo.org/glsa/201604-03

reference_url	https://access.redhat.com/errata/RHSA-2015:1507
reference_id	RHSA-2015:1507
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1507

reference_url	https://access.redhat.com/errata/RHSA-2015:1508
reference_id	RHSA-2015:1508
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1508

reference_url	https://access.redhat.com/errata/RHSA-2015:1512
reference_id	RHSA-2015:1512
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1512

reference_url	https://usn.ubuntu.com/2692-1/
reference_id	USN-2692-1
reference_type
scores
url	https://usn.ubuntu.com/2692-1/

reference_url	https://xenbits.xen.org/xsa/advisory-138.html
reference_id	XSA-138
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-138.html

fixed_packages

url	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
purl	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

aliases CVE-2015-5154

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uyct-zk7n-sbcz

url VCID-z61v-ubkc-dbdt

vulnerability_id VCID-z61v-ubkc-dbdt

summary QEMU leak of uninitialized heap memory in rtl8139 device model

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5165.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5165.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5165

reference_id

reference_type

scores

value	0.13165
scoring_system	epss
scoring_elements	0.9415
published_at	2026-04-21T12:55:00Z

value	0.13165
scoring_system	epss
scoring_elements	0.94086
published_at	2026-04-01T12:55:00Z

value	0.13165
scoring_system	epss
scoring_elements	0.94096
published_at	2026-04-02T12:55:00Z

value	0.13165
scoring_system	epss
scoring_elements	0.94107
published_at	2026-04-04T12:55:00Z

value	0.13165
scoring_system	epss
scoring_elements	0.94111
published_at	2026-04-07T12:55:00Z

value	0.13165
scoring_system	epss
scoring_elements	0.94119
published_at	2026-04-08T12:55:00Z

value	0.13165
scoring_system	epss
scoring_elements	0.94123
published_at	2026-04-09T12:55:00Z

value	0.13165
scoring_system	epss
scoring_elements	0.94128
published_at	2026-04-13T12:55:00Z

value	0.13165
scoring_system	epss
scoring_elements	0.94145
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3214

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5154

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5225

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5745

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1248760
reference_id	1248760
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1248760

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=794610
reference_id	794610
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=794610

reference_url	https://access.redhat.com/errata/RHSA-2015:1674
reference_id	RHSA-2015:1674
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1674

reference_url	https://access.redhat.com/errata/RHSA-2015:1683
reference_id	RHSA-2015:1683
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1683

reference_url	https://access.redhat.com/errata/RHSA-2015:1718
reference_id	RHSA-2015:1718
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1718

reference_url	https://access.redhat.com/errata/RHSA-2015:1739
reference_id	RHSA-2015:1739
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1739

reference_url	https://access.redhat.com/errata/RHSA-2015:1740
reference_id	RHSA-2015:1740
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1740

reference_url	https://access.redhat.com/errata/RHSA-2015:1793
reference_id	RHSA-2015:1793
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1793

reference_url	https://access.redhat.com/errata/RHSA-2015:1833
reference_id	RHSA-2015:1833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1833

reference_url	https://usn.ubuntu.com/2724-1/
reference_id	USN-2724-1
reference_type
scores
url	https://usn.ubuntu.com/2724-1/

reference_url	https://xenbits.xen.org/xsa/advisory-140.html
reference_id	XSA-140
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-140.html

fixed_packages

url	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
purl	pkg:deb/debian/qemu@1:2.4%2Bdfsg-1a?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

aliases CVE-2015-5165

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z61v-ubkc-dbdt

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.4%252Bdfsg-1a%3Fdistro=trixie

Package Instance