Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie

Type deb

Namespace debian

Name xen

Version 4.14.0+80-gd101b417b7-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.14.0+88-g1d1d1f5391-1

Latest_non_vulnerable_version 4.20.2+7-g1badcf5035-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-28t2-hng7-tfe5

vulnerability_id VCID-28t2-hng7-tfe5

summary missed flush in XSA-321 backport

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-27379

reference_id

reference_type

scores

value	0.0007
scoring_system	epss
scoring_elements	0.21363
published_at	2026-04-24T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.215
published_at	2026-04-01T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.2167
published_at	2026-04-02T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21728
published_at	2026-04-04T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21481
published_at	2026-04-07T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21558
published_at	2026-04-08T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21617
published_at	2026-04-09T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21629
published_at	2026-04-11T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21592
published_at	2026-04-12T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21535
published_at	2026-04-13T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21533
published_at	2026-04-16T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.2154
published_at	2026-04-18T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21509
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-27379

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://xenbits.xen.org/xsa/advisory-366.html
reference_id	XSA-366
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-366.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2021-27379

risk_score 2.0

exploitability 0.5

weighted_severity 4.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-28t2-hng7-tfe5

url VCID-34gr-dtsz-1fab

vulnerability_id VCID-34gr-dtsz-1fab

summary x86: Race condition in Xen mapping code

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27672.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27672.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-27672

reference_id

reference_type

scores

value	0.00039
scoring_system	epss
scoring_elements	0.11676
published_at	2026-04-01T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11799
published_at	2026-04-02T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11842
published_at	2026-04-04T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11631
published_at	2026-04-07T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11716
published_at	2026-04-08T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11771
published_at	2026-04-09T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11782
published_at	2026-04-11T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11743
published_at	2026-04-12T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11719
published_at	2026-04-13T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11581
published_at	2026-04-16T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11582
published_at	2026-04-18T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11705
published_at	2026-04-21T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11664
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-27672

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1891096
reference_id	1891096
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1891096

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://xenbits.xen.org/xsa/advisory-345.html
reference_id	XSA-345
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-345.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-27672, XSA-345

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-34gr-dtsz-1fab

url VCID-3whm-8fyv-zyhd

vulnerability_id VCID-3whm-8fyv-zyhd

summary race when migrating timers between x86 HVM vCPU-s

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25604.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25604.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25604

reference_id

reference_type

scores

value	0.00071
scoring_system	epss
scoring_elements	0.21783
published_at	2026-04-01T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21948
published_at	2026-04-02T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.22002
published_at	2026-04-04T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21767
published_at	2026-04-07T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21844
published_at	2026-04-08T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.219
published_at	2026-04-09T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21911
published_at	2026-04-11T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21871
published_at	2026-04-12T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21814
published_at	2026-04-13T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21817
published_at	2026-04-16T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21823
published_at	2026-04-18T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21787
published_at	2026-04-21T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21639
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25604

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1877382
reference_id	1877382
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1877382

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://usn.ubuntu.com/5617-1/
reference_id	USN-5617-1
reference_type
scores
url	https://usn.ubuntu.com/5617-1/

reference_url	https://xenbits.xen.org/xsa/advisory-336.html
reference_id	XSA-336
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-336.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-25604, XSA-336

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3whm-8fyv-zyhd

url VCID-6kh6-edk7-xkcc

vulnerability_id VCID-6kh6-edk7-xkcc

summary unsafe AMD IOMMU page table updates

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27670.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27670.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-27670

reference_id

reference_type

scores

value	0.00044
scoring_system	epss
scoring_elements	0.13515
published_at	2026-04-01T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13614
published_at	2026-04-02T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13675
published_at	2026-04-04T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13474
published_at	2026-04-07T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13555
published_at	2026-04-08T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13605
published_at	2026-04-09T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13577
published_at	2026-04-11T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13539
published_at	2026-04-12T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13491
published_at	2026-04-13T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13403
published_at	2026-04-16T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.134
published_at	2026-04-18T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13472
published_at	2026-04-21T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13478
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-27670

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1891087
reference_id	1891087
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1891087

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://xenbits.xen.org/xsa/advisory-347.html
reference_id	XSA-347
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-347.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-27670, XSA-347

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6kh6-edk7-xkcc

url VCID-9s43-gewn-bycc

vulnerability_id VCID-9s43-gewn-bycc

summary grant table v2 status pages may remain accessible after de-allocation (take two)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28703

reference_id

reference_type

scores

value	0.0011
scoring_system	epss
scoring_elements	0.29143
published_at	2026-04-24T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29363
published_at	2026-04-01T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29433
published_at	2026-04-02T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.2948
published_at	2026-04-04T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29292
published_at	2026-04-07T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29356
published_at	2026-04-08T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29398
published_at	2026-04-09T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29401
published_at	2026-04-11T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29357
published_at	2026-04-12T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29304
published_at	2026-04-18T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29329
published_at	2026-04-16T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29259
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28703

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28703
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28703

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202402-07
reference_id	GLSA-202402-07
reference_type
scores
url	https://security.gentoo.org/glsa/202402-07

reference_url	https://xenbits.xen.org/xsa/advisory-387.html
reference_id	XSA-387
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-387.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2021-28703, XSA-387

risk_score 1.6

exploitability 0.5

weighted_severity 3.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9s43-gewn-bycc

url VCID-bs56-1z79-uqbt

vulnerability_id VCID-bs56-1z79-uqbt

summary x86 pv guest kernel DoS via SYSENTER

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25596.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25596.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25596

reference_id

reference_type

scores

value	0.00086
scoring_system	epss
scoring_elements	0.24863
published_at	2026-04-01T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24941
published_at	2026-04-02T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24982
published_at	2026-04-04T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24755
published_at	2026-04-07T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24823
published_at	2026-04-08T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24867
published_at	2026-04-09T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24881
published_at	2026-04-11T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24843
published_at	2026-04-12T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24787
published_at	2026-04-13T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24799
published_at	2026-04-16T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24791
published_at	2026-04-18T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24768
published_at	2026-04-21T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24707
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1880137
reference_id	1880137
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1880137

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://usn.ubuntu.com/5617-1/
reference_id	USN-5617-1
reference_type
scores
url	https://usn.ubuntu.com/5617-1/

reference_url	https://xenbits.xen.org/xsa/advisory-339.html
reference_id	XSA-339
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-339.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-25596, XSA-339

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bs56-1z79-uqbt

url VCID-bzve-5gwu-8ydb

vulnerability_id VCID-bzve-5gwu-8ydb

summary x86 pv: Crash when handling guest access to MSR_MISC_ENABLE

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25602.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25602.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25602

reference_id

reference_type

scores

value	0.00081
scoring_system	epss
scoring_elements	0.23866
published_at	2026-04-01T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23986
published_at	2026-04-02T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.24025
published_at	2026-04-04T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2381
published_at	2026-04-07T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23877
published_at	2026-04-08T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23923
published_at	2026-04-09T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2394
published_at	2026-04-11T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23896
published_at	2026-04-12T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23841
published_at	2026-04-13T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23853
published_at	2026-04-16T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23842
published_at	2026-04-18T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23822
published_at	2026-04-21T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23704
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1880158
reference_id	1880158
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1880158

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://usn.ubuntu.com/5617-1/
reference_id	USN-5617-1
reference_type
scores
url	https://usn.ubuntu.com/5617-1/

reference_url	https://xenbits.xen.org/xsa/advisory-333.html
reference_id	XSA-333
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-333.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-25602, XSA-333

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bzve-5gwu-8ydb

url VCID-dqy9-zkvw-e3gk

vulnerability_id VCID-dqy9-zkvw-e3gk

summary lack of preemption in evtchn_reset() / evtchn_destroy()

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25601.json

reference_id

reference_type

scores

value	6.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25601.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25601

reference_id

reference_type

scores

value	0.00076
scoring_system	epss
scoring_elements	0.22683
published_at	2026-04-01T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22858
published_at	2026-04-02T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22902
published_at	2026-04-04T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22695
published_at	2026-04-07T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22771
published_at	2026-04-08T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22823
published_at	2026-04-09T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22845
published_at	2026-04-11T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22808
published_at	2026-04-12T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22751
published_at	2026-04-13T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22765
published_at	2026-04-16T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22761
published_at	2026-04-18T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.2272
published_at	2026-04-21T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22557
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1877378
reference_id	1877378
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1877378

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://usn.ubuntu.com/5617-1/
reference_id	USN-5617-1
reference_type
scores
url	https://usn.ubuntu.com/5617-1/

reference_url	https://xenbits.xen.org/xsa/advisory-344.html
reference_id	XSA-344
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-344.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-25601, XSA-344

risk_score 2.7

exploitability 0.5

weighted_severity 5.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dqy9-zkvw-e3gk

url VCID-eb8v-p31a-yuhu

vulnerability_id VCID-eb8v-p31a-yuhu

summary once valid event channels may not turn invalid

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25597.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25597.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25597

reference_id

reference_type

scores

value	0.00109
scoring_system	epss
scoring_elements	0.29184
published_at	2026-04-01T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.2926
published_at	2026-04-02T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.2931
published_at	2026-04-04T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29122
published_at	2026-04-07T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29187
published_at	2026-04-08T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29227
published_at	2026-04-09T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29233
published_at	2026-04-11T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29186
published_at	2026-04-12T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29134
published_at	2026-04-13T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.2916
published_at	2026-04-16T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29137
published_at	2026-04-18T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29088
published_at	2026-04-21T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.28968
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1879553
reference_id	1879553
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1879553

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://usn.ubuntu.com/5617-1/
reference_id	USN-5617-1
reference_type
scores
url	https://usn.ubuntu.com/5617-1/

reference_url	https://xenbits.xen.org/xsa/advisory-338.html
reference_id	XSA-338
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-338.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-25597, XSA-338

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eb8v-p31a-yuhu

url VCID-eka3-u8e5-3uad

vulnerability_id VCID-eka3-u8e5-3uad

summary undue deferral of IOMMU TLB flushes

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27671.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27671.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-27671

reference_id

reference_type

scores

value	0.00071
scoring_system	epss
scoring_elements	0.21789
published_at	2026-04-01T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21954
published_at	2026-04-02T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.22007
published_at	2026-04-04T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21772
published_at	2026-04-07T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21849
published_at	2026-04-08T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21905
published_at	2026-04-09T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21916
published_at	2026-04-11T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21876
published_at	2026-04-12T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21819
published_at	2026-04-13T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21821
published_at	2026-04-16T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21828
published_at	2026-04-18T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21791
published_at	2026-04-21T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21643
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-27671

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1891091
reference_id	1891091
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1891091

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://xenbits.xen.org/xsa/advisory-346.html
reference_id	XSA-346
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-346.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-27671, XSA-346

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eka3-u8e5-3uad

url VCID-ep7n-um5m-ekgk

vulnerability_id VCID-ep7n-um5m-ekgk

summary PCI passthrough code reading back hardware registers

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25595.json

reference_id

reference_type

scores

value	7.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25595.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25595

reference_id

reference_type

scores

value	0.00088
scoring_system	epss
scoring_elements	0.25165
published_at	2026-04-01T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25245
published_at	2026-04-02T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25284
published_at	2026-04-04T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25056
published_at	2026-04-07T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25126
published_at	2026-04-08T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25171
published_at	2026-04-09T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25184
published_at	2026-04-11T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25141
published_at	2026-04-12T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25089
published_at	2026-04-13T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.251
published_at	2026-04-16T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25091
published_at	2026-04-18T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25062
published_at	2026-04-21T12:55:00Z

value	0.00088
scoring_system	epss
scoring_elements	0.25002
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1877369
reference_id	1877369
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1877369

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://usn.ubuntu.com/5617-1/
reference_id	USN-5617-1
reference_type
scores
url	https://usn.ubuntu.com/5617-1/

reference_url	https://xenbits.xen.org/xsa/advisory-337.html
reference_id	XSA-337
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-337.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-25595, XSA-337

risk_score 3.1

exploitability 0.5

weighted_severity 6.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ep7n-um5m-ekgk

url VCID-p7ug-wwk5-63gb

vulnerability_id VCID-p7ug-wwk5-63gb

summary out of bounds event channels available to 32-bit x86 domains

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25600.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25600.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25600

reference_id

reference_type

scores

value	0.001
scoring_system	epss
scoring_elements	0.27816
published_at	2026-04-01T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27866
published_at	2026-04-02T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27906
published_at	2026-04-04T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27698
published_at	2026-04-07T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27766
published_at	2026-04-08T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27808
published_at	2026-04-09T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27814
published_at	2026-04-11T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27772
published_at	2026-04-12T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27715
published_at	2026-04-13T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27723
published_at	2026-04-16T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27697
published_at	2026-04-18T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27658
published_at	2026-04-21T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27605
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1880156
reference_id	1880156
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1880156

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://usn.ubuntu.com/5617-1/
reference_id	USN-5617-1
reference_type
scores
url	https://usn.ubuntu.com/5617-1/

reference_url	https://xenbits.xen.org/xsa/advisory-342.html
reference_id	XSA-342
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-342.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-25600, XSA-342

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p7ug-wwk5-63gb

url VCID-pzt3-abab-4kdd

vulnerability_id VCID-pzt3-abab-4kdd

summary x86 PV guest INVLPG-like flushes may leave stale TLB entries

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27674.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27674.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-27674

reference_id

reference_type

scores

value	0.00073
scoring_system	epss
scoring_elements	0.22151
published_at	2026-04-01T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22309
published_at	2026-04-02T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22352
published_at	2026-04-04T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22137
published_at	2026-04-07T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.2222
published_at	2026-04-08T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22274
published_at	2026-04-09T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22294
published_at	2026-04-11T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22252
published_at	2026-04-12T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22193
published_at	2026-04-13T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22194
published_at	2026-04-16T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22188
published_at	2026-04-18T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22142
published_at	2026-04-21T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22002
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-27674

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1891089
reference_id	1891089
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1891089

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://xenbits.xen.org/xsa/advisory-286.html
reference_id	XSA-286
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-286.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-27674, XSA-286

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pzt3-abab-4kdd

url VCID-vb2u-yc2z-ayh5

vulnerability_id VCID-vb2u-yc2z-ayh5

summary Missing memory barriers when accessing/allocating an event channel

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25603.json

reference_id

reference_type

scores

value	7.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25603.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25603

reference_id

reference_type

scores

value	0.00072
scoring_system	epss
scoring_elements	0.21923
published_at	2026-04-01T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22085
published_at	2026-04-02T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22135
published_at	2026-04-04T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21911
published_at	2026-04-07T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21992
published_at	2026-04-08T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22047
published_at	2026-04-09T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22062
published_at	2026-04-11T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.22021
published_at	2026-04-12T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21961
published_at	2026-04-13T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.2196
published_at	2026-04-16T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21956
published_at	2026-04-18T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21913
published_at	2026-04-21T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21767
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1877366
reference_id	1877366
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1877366

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://usn.ubuntu.com/5617-1/
reference_id	USN-5617-1
reference_type
scores
url	https://usn.ubuntu.com/5617-1/

reference_url	https://xenbits.xen.org/xsa/advisory-340.html
reference_id	XSA-340
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-340.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-25603, XSA-340

risk_score 3.1

exploitability 0.5

weighted_severity 6.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vb2u-yc2z-ayh5

url VCID-xe4j-gg7f-wyfa

vulnerability_id VCID-xe4j-gg7f-wyfa

summary races with evtchn_reset()

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25599.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25599.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25599

reference_id

reference_type

scores

value	0.00074
scoring_system	epss
scoring_elements	0.22299
published_at	2026-04-07T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22465
published_at	2026-04-02T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.2251
published_at	2026-04-04T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22381
published_at	2026-04-08T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22436
published_at	2026-04-09T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22457
published_at	2026-04-11T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22416
published_at	2026-04-12T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.2236
published_at	2026-04-13T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22379
published_at	2026-04-16T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22375
published_at	2026-04-18T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22323
published_at	2026-04-21T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22174
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1879567
reference_id	1879567
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1879567

reference_url	https://security.gentoo.org/glsa/202011-06
reference_id	GLSA-202011-06
reference_type
scores
url	https://security.gentoo.org/glsa/202011-06

reference_url	https://usn.ubuntu.com/5617-1/
reference_id	USN-5617-1
reference_type
scores
url	https://usn.ubuntu.com/5617-1/

reference_url	https://xenbits.xen.org/xsa/advisory-343.html
reference_id	XSA-343
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-343.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-25599, XSA-343

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xe4j-gg7f-wyfa

url VCID-zrxf-3w1d-t3ba

vulnerability_id VCID-zrxf-3w1d-t3ba

summary Information leak via power sidechannel

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28368.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28368.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28368

reference_id

reference_type

scores

value	0.00067
scoring_system	epss
scoring_elements	0.20591
published_at	2026-04-01T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20734
published_at	2026-04-02T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20793
published_at	2026-04-04T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20512
published_at	2026-04-07T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20589
published_at	2026-04-08T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20648
published_at	2026-04-09T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20668
published_at	2026-04-11T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20626
published_at	2026-04-12T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20574
published_at	2026-04-13T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20559
published_at	2026-04-16T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20556
published_at	2026-04-18T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20551
published_at	2026-04-21T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20436
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28368

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1897145
reference_id	1897145
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1897145

reference_url	https://xenbits.xen.org/xsa/advisory-351.html
reference_id	XSA-351
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-351.html

fixed_packages

url	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
purl	pkg:deb/debian/xen@4.14.0%2B80-gd101b417b7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2020-28368, XSA-351

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zrxf-3w1d-t3ba

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.0%252B80-gd101b417b7-1%3Fdistro=trixie

Package Instance