Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie

Type deb

Namespace debian

Name xen

Version 4.8.3+comet2+shim4.10.0+comet3-1+deb9u5

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.8.3+xsa262+shim4.10.0+comet3-1+deb9u6

Latest_non_vulnerable_version 4.20.2+7-g1badcf5035-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-184d-4jsf-yqed

vulnerability_id VCID-184d-4jsf-yqed

summary improper bug check in x86 log-dirty handling

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17565.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17565.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-17565

reference_id

reference_type

scores

value	0.00067
scoring_system	epss
scoring_elements	0.20783
published_at	2026-04-01T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20621
published_at	2026-04-24T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20766
published_at	2026-04-13T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20757
published_at	2026-04-16T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.2075
published_at	2026-04-18T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20737
published_at	2026-04-21T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20935
published_at	2026-04-02T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20993
published_at	2026-04-04T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20708
published_at	2026-04-07T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20785
published_at	2026-04-08T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20846
published_at	2026-04-09T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20862
published_at	2026-04-11T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20819
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-17565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17563
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17563

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17564
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17564

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17566
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17566

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.3
scoring_system	cvssv2
scoring_elements	AV:A/AC:M/Au:S/C:N/I:N/A:P

value	4.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.debian.org/debian-lts-announce/2018/01/msg00003.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/01/msg00003.html

reference_url	https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html

reference_url	https://support.citrix.com/article/CTX232096
reference_id
reference_type
scores
url	https://support.citrix.com/article/CTX232096

reference_url	https://www.debian.org/security/2018/dsa-4112
reference_id
reference_type
scores
url	https://www.debian.org/security/2018/dsa-4112

reference_url	http://www.openwall.com/lists/oss-security/2017/12/12/5
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2017/12/12/5

reference_url	http://www.securityfocus.com/bid/102175
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/102175

reference_url	http://www.securitytracker.com/id/1040771
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1040771

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1518659
reference_id	1518659
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1518659

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen::::::::
reference_id	cpe:2.3:o:xen:xen::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-17565

reference_id

CVE-2017-17565

reference_type

scores

value	4.7
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:N/I:N/A:C

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2017-17565

reference_url	https://security.gentoo.org/glsa/201801-14
reference_id	GLSA-201801-14
reference_type
scores
url	https://security.gentoo.org/glsa/201801-14

reference_url	https://xenbits.xen.org/xsa/advisory-251.html
reference_id	XSA-251
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-251.html

fixed_packages

url	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
purl	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.3%252Bcomet2%252Bshim4.10.0%252Bcomet3-1%252Bdeb9u5%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2017-17565, XSA-251

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-184d-4jsf-yqed

url VCID-8g31-68m7-b3ak

vulnerability_id VCID-8g31-68m7-b3ak

summary grant table v2 -> v1 transition may crash Xen

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7541.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7541.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-7541

reference_id

reference_type

scores

value	0.00092
scoring_system	epss
scoring_elements	0.25963
published_at	2026-04-01T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.26046
published_at	2026-04-02T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.26087
published_at	2026-04-04T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25853
published_at	2026-04-07T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25923
published_at	2026-04-08T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25974
published_at	2026-04-09T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25984
published_at	2026-04-11T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.2594
published_at	2026-04-12T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.2588
published_at	2026-04-13T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25883
published_at	2026-04-16T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25865
published_at	2026-04-18T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25835
published_at	2026-04-21T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25771
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-7541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7542

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1544459
reference_id	1544459
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1544459

reference_url	https://security.gentoo.org/glsa/201810-06
reference_id	GLSA-201810-06
reference_type
scores
url	https://security.gentoo.org/glsa/201810-06

reference_url	https://xenbits.xen.org/xsa/advisory-255.html
reference_id	XSA-255
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-255.html

fixed_packages

url	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
purl	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.3%252Bcomet2%252Bshim4.10.0%252Bcomet3-1%252Bdeb9u5%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2018-7541, XSA-255

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8g31-68m7-b3ak

url VCID-adh2-ubyt-xyfu

vulnerability_id VCID-adh2-ubyt-xyfu

summary x86 PV guests may gain access to internally used pages

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17566.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17566.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-17566

reference_id

reference_type

scores

value	0.00105
scoring_system	epss
scoring_elements	0.2851
published_at	2026-04-01T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28286
published_at	2026-04-24T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28459
published_at	2026-04-13T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28474
published_at	2026-04-16T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.2845
published_at	2026-04-18T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28401
published_at	2026-04-21T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28596
published_at	2026-04-02T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28639
published_at	2026-04-04T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28442
published_at	2026-04-07T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28509
published_at	2026-04-08T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28549
published_at	2026-04-09T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.2855
published_at	2026-04-11T12:55:00Z

value	0.00105
scoring_system	epss
scoring_elements	0.28508
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-17566

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17563
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17563

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17564
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17564

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17566
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17566

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv2
scoring_elements	AV:A/AC:M/Au:S/C:P/I:P/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.debian.org/debian-lts-announce/2018/01/msg00003.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/01/msg00003.html

reference_url	https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html

reference_url	https://support.citrix.com/article/CTX232096
reference_id
reference_type
scores
url	https://support.citrix.com/article/CTX232096

reference_url	https://www.debian.org/security/2018/dsa-4112
reference_id
reference_type
scores
url	https://www.debian.org/security/2018/dsa-4112

reference_url	http://www.openwall.com/lists/oss-security/2017/12/12/4
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2017/12/12/4

reference_url	http://www.securityfocus.com/bid/102167
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/102167

reference_url	http://www.securitytracker.com/id/1040768
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1040768

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1518656
reference_id	1518656
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1518656

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen::::::::
reference_id	cpe:2.3:o:xen:xen::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-17566

reference_id

CVE-2017-17566

reference_type

scores

value	6.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:C/I:C/A:C

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2017-17566

reference_url	https://security.gentoo.org/glsa/201801-14
reference_id	GLSA-201801-14
reference_type
scores
url	https://security.gentoo.org/glsa/201801-14

reference_url	https://xenbits.xen.org/xsa/advisory-248.html
reference_id	XSA-248
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-248.html

fixed_packages

url	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
purl	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.3%252Bcomet2%252Bshim4.10.0%252Bcomet3-1%252Bdeb9u5%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2017-17566

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-adh2-ubyt-xyfu

url VCID-n5nt-82va-kfeb

vulnerability_id VCID-n5nt-82va-kfeb

summary improper x86 shadow mode refcount error handling

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17564.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17564.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-17564

reference_id

reference_type

scores

value	0.00064
scoring_system	epss
scoring_elements	0.20011
published_at	2026-04-01T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19866
published_at	2026-04-24T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19996
published_at	2026-04-13T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19977
published_at	2026-04-16T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.1998
published_at	2026-04-18T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19976
published_at	2026-04-21T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20159
published_at	2026-04-02T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20218
published_at	2026-04-04T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19944
published_at	2026-04-07T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20024
published_at	2026-04-08T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20083
published_at	2026-04-09T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20098
published_at	2026-04-11T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20053
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-17564

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17563
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17563

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17564
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17564

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17566
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17566

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv2
scoring_elements	AV:A/AC:M/Au:S/C:P/I:P/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.debian.org/debian-lts-announce/2018/01/msg00003.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/01/msg00003.html

reference_url	https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html

reference_url	https://support.citrix.com/article/CTX232096
reference_id
reference_type
scores
url	https://support.citrix.com/article/CTX232096

reference_url	https://www.debian.org/security/2018/dsa-4112
reference_id
reference_type
scores
url	https://www.debian.org/security/2018/dsa-4112

reference_url	http://www.openwall.com/lists/oss-security/2017/12/12/3
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2017/12/12/3

reference_url	http://www.securityfocus.com/bid/102172
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/102172

reference_url	http://www.securitytracker.com/id/1040770
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1040770

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1518658
reference_id	1518658
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1518658

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen::::::::
reference_id	cpe:2.3:o:xen:xen::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-17564

reference_id

CVE-2017-17564

reference_type

scores

value	6.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:C/I:C/A:C

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2017-17564

reference_url	https://security.gentoo.org/glsa/201801-14
reference_id	GLSA-201801-14
reference_type
scores
url	https://security.gentoo.org/glsa/201801-14

reference_url	https://xenbits.xen.org/xsa/advisory-250.html
reference_id	XSA-250
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-250.html

fixed_packages

url	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
purl	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.3%252Bcomet2%252Bshim4.10.0%252Bcomet3-1%252Bdeb9u5%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2017-17564

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n5nt-82va-kfeb

url VCID-p3jn-mvy5-gkgw

vulnerability_id VCID-p3jn-mvy5-gkgw

summary broken x86 shadow mode refcount overflow check

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17563.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17563.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-17563

reference_id

reference_type

scores

value	0.00064
scoring_system	epss
scoring_elements	0.20011
published_at	2026-04-01T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19866
published_at	2026-04-24T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19996
published_at	2026-04-13T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19977
published_at	2026-04-16T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.1998
published_at	2026-04-18T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19976
published_at	2026-04-21T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20159
published_at	2026-04-02T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20218
published_at	2026-04-04T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19944
published_at	2026-04-07T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20024
published_at	2026-04-08T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20083
published_at	2026-04-09T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20098
published_at	2026-04-11T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20053
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-17563

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17563
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17563

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17564
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17564

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17566
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17566

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv2
scoring_elements	AV:A/AC:M/Au:S/C:P/I:P/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.debian.org/debian-lts-announce/2018/01/msg00003.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/01/msg00003.html

reference_url	https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html

reference_url	https://support.citrix.com/article/CTX232096
reference_id
reference_type
scores
url	https://support.citrix.com/article/CTX232096

reference_url	https://www.debian.org/security/2018/dsa-4112
reference_id
reference_type
scores
url	https://www.debian.org/security/2018/dsa-4112

reference_url	http://www.openwall.com/lists/oss-security/2017/12/12/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2017/12/12/2

reference_url	http://www.securityfocus.com/bid/102169
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/102169

reference_url	http://www.securitytracker.com/id/1040769
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1040769

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1518657
reference_id	1518657
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1518657

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen::::::::
reference_id	cpe:2.3:o:xen:xen::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-17563

reference_id

CVE-2017-17563

reference_type

scores

value	6.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:C/I:C/A:C

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2017-17563

reference_url	https://security.gentoo.org/glsa/201801-14
reference_id	GLSA-201801-14
reference_type
scores
url	https://security.gentoo.org/glsa/201801-14

reference_url	https://xenbits.xen.org/xsa/advisory-249.html
reference_id	XSA-249
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-249.html

fixed_packages

url	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
purl	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.3%252Bcomet2%252Bshim4.10.0%252Bcomet3-1%252Bdeb9u5%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2017-17563

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p3jn-mvy5-gkgw

url VCID-sqyq-m67p-z7cc

vulnerability_id VCID-sqyq-m67p-z7cc

summary x86 PVH guest without LAPIC may DoS the host

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7542.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7542.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-7542

reference_id

reference_type

scores

value	0.00054
scoring_system	epss
scoring_elements	0.16925
published_at	2026-04-01T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.1709
published_at	2026-04-02T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17144
published_at	2026-04-04T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.1692
published_at	2026-04-07T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17009
published_at	2026-04-08T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17068
published_at	2026-04-09T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17043
published_at	2026-04-11T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.16996
published_at	2026-04-12T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.16936
published_at	2026-04-13T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.16873
published_at	2026-04-16T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.16876
published_at	2026-04-18T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.16914
published_at	2026-04-21T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.16818
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-7542

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7542

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1544453
reference_id	1544453
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1544453

reference_url	https://security.gentoo.org/glsa/201810-06
reference_id	GLSA-201810-06
reference_type
scores
url	https://security.gentoo.org/glsa/201810-06

reference_url	https://xenbits.xen.org/xsa/advisory-256.html
reference_id	XSA-256
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-256.html

fixed_packages

url	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
purl	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.3%252Bcomet2%252Bshim4.10.0%252Bcomet3-1%252Bdeb9u5%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2018-7542, XSA-256

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sqyq-m67p-z7cc

url VCID-x6ks-k1hc-27du

vulnerability_id VCID-x6ks-k1hc-27du

summary DoS via non-preemptable L3/L4 pagetable freeing

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7540.json

reference_id

reference_type

scores

value	6.0
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7540.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-7540

reference_id

reference_type

scores

value	0.0009
scoring_system	epss
scoring_elements	0.25601
published_at	2026-04-01T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25672
published_at	2026-04-02T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25713
published_at	2026-04-04T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25482
published_at	2026-04-07T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25555
published_at	2026-04-08T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25602
published_at	2026-04-09T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25613
published_at	2026-04-11T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25572
published_at	2026-04-12T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29315
published_at	2026-04-24T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29484
published_at	2026-04-13T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29503
published_at	2026-04-16T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29476
published_at	2026-04-18T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.2943
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-7540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7542

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1544456
reference_id	1544456
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1544456

reference_url	https://security.gentoo.org/glsa/201810-06
reference_id	GLSA-201810-06
reference_type
scores
url	https://security.gentoo.org/glsa/201810-06

reference_url	https://xenbits.xen.org/xsa/advisory-252.html
reference_id	XSA-252
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-252.html

fixed_packages

url	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
purl	pkg:deb/debian/xen@4.8.3%2Bcomet2%2Bshim4.10.0%2Bcomet3-1%2Bdeb9u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.3%252Bcomet2%252Bshim4.10.0%252Bcomet3-1%252Bdeb9u5%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2018-7540, XSA-252

risk_score 2.7

exploitability 0.5

weighted_severity 5.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x6ks-k1hc-27du

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.3%252Bcomet2%252Bshim4.10.0%252Bcomet3-1%252Bdeb9u5%3Fdistro=trixie

Package Instance