Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie

Type deb

Namespace debian

Name xen

Version 4.20.2+7-g1badcf5035-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-26a9-9zz3-wfhh

vulnerability_id VCID-26a9-9zz3-wfhh

summary x86: Incorrect input sanitisation in Viridian hypercalls

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-58147

reference_id

reference_type

scores

value	0.00023
scoring_system	epss
scoring_elements	0.06179
published_at	2026-04-07T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.06166
published_at	2026-04-02T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.0626
published_at	2026-04-09T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.06221
published_at	2026-04-08T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.06197
published_at	2026-04-04T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07718
published_at	2026-04-29T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07807
published_at	2026-04-21T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07764
published_at	2026-04-24T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07742
published_at	2026-04-26T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07782
published_at	2026-04-11T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07769
published_at	2026-04-12T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07753
published_at	2026-04-13T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07667
published_at	2026-04-16T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07654
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-58147

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58147
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58147

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075
reference_id	1120075
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075

reference_url

https://xenbits.xenproject.org/xsa/advisory-475.html

reference_id

advisory-475.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:45:24Z/

url

https://xenbits.xenproject.org/xsa/advisory-475.html

reference_url	https://xenbits.xen.org/xsa/advisory-475.html
reference_id	XSA-475
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-475.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2025-58147, XSA-475

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-26a9-9zz3-wfhh

url VCID-2trm-w3ww-cfhk

vulnerability_id VCID-2trm-w3ww-cfhk

summary Mutiple vulnerabilities in the Viridian interface

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27466

reference_id

reference_type

scores

value	0.00025
scoring_system	epss
scoring_elements	0.0691
published_at	2026-04-02T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.0696
published_at	2026-04-04T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07717
published_at	2026-04-21T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07643
published_at	2026-04-26T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07611
published_at	2026-04-29T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07576
published_at	2026-04-18T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07665
published_at	2026-04-24T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08147
published_at	2026-04-11T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08071
published_at	2026-04-07T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08132
published_at	2026-04-08T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08154
published_at	2026-04-09T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08127
published_at	2026-04-12T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.0811
published_at	2026-04-13T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08017
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27466

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27466
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27466

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075
reference_id	1120075
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075

reference_url

https://xenbits.xenproject.org/xsa/advisory-472.html

reference_id

advisory-472.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-09-11T14:25:53Z/

url

https://xenbits.xenproject.org/xsa/advisory-472.html

reference_url	https://xenbits.xen.org/xsa/advisory-472.html
reference_id	XSA-472
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-472.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2025-27466

risk_score 2.5

exploitability 0.5

weighted_severity 4.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2trm-w3ww-cfhk

url VCID-4pra-prf3-1uff

vulnerability_id VCID-4pra-prf3-1uff

summary Incorrect removal of permissions on PCI device unplug

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-58149

reference_id

reference_type

scores

value	0.00038
scoring_system	epss
scoring_elements	0.11486
published_at	2026-04-07T12:55:00Z

value	0.00038
scoring_system	epss
scoring_elements	0.11656
published_at	2026-04-02T12:55:00Z

value	0.00038
scoring_system	epss
scoring_elements	0.11634
published_at	2026-04-09T12:55:00Z

value	0.00038
scoring_system	epss
scoring_elements	0.11572
published_at	2026-04-08T12:55:00Z

value	0.00038
scoring_system	epss
scoring_elements	0.11701
published_at	2026-04-04T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17679
published_at	2026-04-29T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17836
published_at	2026-04-21T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17743
published_at	2026-04-24T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.1772
published_at	2026-04-26T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.1794
published_at	2026-04-11T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17895
published_at	2026-04-12T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17847
published_at	2026-04-13T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17789
published_at	2026-04-16T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.17798
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-58149

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58149
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58149

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075
reference_id	1120075
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075

reference_url

https://xenbits.xenproject.org/xsa/advisory-476.html

reference_id

advisory-476.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-11-03T14:24:29Z/

url

https://xenbits.xenproject.org/xsa/advisory-476.html

reference_url	https://xenbits.xen.org/xsa/advisory-476.html
reference_id	XSA-476
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-476.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2025-58149, XSA-476

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4pra-prf3-1uff

url VCID-c4xu-szkm-1kh6

vulnerability_id VCID-c4xu-szkm-1kh6

summary Arm issues with page refcounting

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-58145

reference_id

reference_type

scores

value	0.00044
scoring_system	epss
scoring_elements	0.13678
published_at	2026-04-04T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13617
published_at	2026-04-02T12:55:00Z

value	0.00045
scoring_system	epss
scoring_elements	0.13724
published_at	2026-04-29T12:55:00Z

value	0.00045
scoring_system	epss
scoring_elements	0.13739
published_at	2026-04-18T12:55:00Z

value	0.00045
scoring_system	epss
scoring_elements	0.13813
published_at	2026-04-21T12:55:00Z

value	0.00045
scoring_system	epss
scoring_elements	0.13836
published_at	2026-04-24T12:55:00Z

value	0.00045
scoring_system	epss
scoring_elements	0.13805
published_at	2026-04-26T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.14717
published_at	2026-04-11T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.14679
published_at	2026-04-12T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.14624
published_at	2026-04-13T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.14515
published_at	2026-04-16T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.14697
published_at	2026-04-08T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.14757
published_at	2026-04-09T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.14609
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-58145

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58145
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58145

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075
reference_id	1120075
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075

reference_url

https://xenbits.xenproject.org/xsa/advisory-473.html

reference_id

advisory-473.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-09-11T14:39:37Z/

url

https://xenbits.xenproject.org/xsa/advisory-473.html

reference_url	https://xenbits.xen.org/xsa/advisory-473.html
reference_id	XSA-473
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-473.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2025-58145

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c4xu-szkm-1kh6

url VCID-ejhc-6yqt-gkgv

vulnerability_id VCID-ejhc-6yqt-gkgv

summary x86: Indirect Target Selection

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-28956.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-28956.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-28956

reference_id

reference_type

scores

value	0.00091
scoring_system	epss
scoring_elements	0.25696
published_at	2026-04-09T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25764
published_at	2026-04-02T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25806
published_at	2026-04-04T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25577
published_at	2026-04-07T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.2565
published_at	2026-04-08T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25706
published_at	2026-04-11T12:55:00Z

value	0.00227
scoring_system	epss
scoring_elements	0.45504
published_at	2026-04-21T12:55:00Z

value	0.00227
scoring_system	epss
scoring_elements	0.45428
published_at	2026-04-26T12:55:00Z

value	0.00227
scoring_system	epss
scoring_elements	0.4551
published_at	2026-04-13T12:55:00Z

value	0.00227
scoring_system	epss
scoring_elements	0.45557
published_at	2026-04-16T12:55:00Z

value	0.00227
scoring_system	epss
scoring_elements	0.45554
published_at	2026-04-18T12:55:00Z

value	0.00227
scoring_system	epss
scoring_elements	0.45419
published_at	2026-04-24T12:55:00Z

value	0.00227
scoring_system	epss
scoring_elements	0.45368
published_at	2026-04-29T12:55:00Z

value	0.00227
scoring_system	epss
scoring_elements	0.45505
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-28956

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28956
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28956

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105172
reference_id	1105172
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105172

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105193
reference_id	1105193
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105193

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2366125
reference_id	2366125
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2366125

reference_url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01153.html

reference_id

intel-sa-01153.html

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

value	5.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:42:03Z/

url

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01153.html

reference_url	https://access.redhat.com/errata/RHSA-2025:10101
reference_id	RHSA-2025:10101
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10101

reference_url	https://access.redhat.com/errata/RHSA-2025:10102
reference_id	RHSA-2025:10102
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10102

reference_url	https://access.redhat.com/errata/RHSA-2025:10103
reference_id	RHSA-2025:10103
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10103

reference_url	https://access.redhat.com/errata/RHSA-2025:10107
reference_id	RHSA-2025:10107
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10107

reference_url	https://access.redhat.com/errata/RHSA-2025:10108
reference_id	RHSA-2025:10108
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10108

reference_url	https://access.redhat.com/errata/RHSA-2025:10109
reference_id	RHSA-2025:10109
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10109

reference_url	https://access.redhat.com/errata/RHSA-2025:10111
reference_id	RHSA-2025:10111
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10111

reference_url	https://access.redhat.com/errata/RHSA-2025:10126
reference_id	RHSA-2025:10126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10126

reference_url	https://access.redhat.com/errata/RHSA-2025:10162
reference_id	RHSA-2025:10162
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10162

reference_url	https://access.redhat.com/errata/RHSA-2025:10991
reference_id	RHSA-2025:10991
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10991

reference_url	https://access.redhat.com/errata/RHSA-2025:13962
reference_id	RHSA-2025:13962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13962

reference_url	https://access.redhat.com/errata/RHSA-2025:19962
reference_id	RHSA-2025:19962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19962

reference_url	https://access.redhat.com/errata/RHSA-2025:20095
reference_id	RHSA-2025:20095
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20095

reference_url	https://usn.ubuntu.com/7535-1/
reference_id	USN-7535-1
reference_type
scores
url	https://usn.ubuntu.com/7535-1/

reference_url	https://xenbits.xen.org/xsa/advisory-469.html
reference_id	XSA-469
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-469.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2024-28956, XSA-469

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ejhc-6yqt-gkgv

url VCID-h9hz-vur7-kyhg

vulnerability_id VCID-h9hz-vur7-kyhg

summary x86: Incorrect input sanitisation in Viridian hypercalls

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-58148

reference_id

reference_type

scores

value	0.00023
scoring_system	epss
scoring_elements	0.06179
published_at	2026-04-07T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.06166
published_at	2026-04-02T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.0626
published_at	2026-04-09T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.06221
published_at	2026-04-08T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.06197
published_at	2026-04-04T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07718
published_at	2026-04-29T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07807
published_at	2026-04-21T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07764
published_at	2026-04-24T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07742
published_at	2026-04-26T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07782
published_at	2026-04-11T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07769
published_at	2026-04-12T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07753
published_at	2026-04-13T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07667
published_at	2026-04-16T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07654
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-58148

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58148
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58148

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075
reference_id	1120075
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075

reference_url

https://xenbits.xenproject.org/xsa/advisory-475.html

reference_id

advisory-475.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-11-03T14:25:18Z/

url

https://xenbits.xenproject.org/xsa/advisory-475.html

reference_url	https://xenbits.xen.org/xsa/advisory-475.html
reference_id	XSA-475
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-475.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2025-58148

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h9hz-vur7-kyhg

url VCID-j22f-mbqe-a7dk

vulnerability_id VCID-j22f-mbqe-a7dk

summary x86: Transitive Scheduler Attacks

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-36350.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-36350.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-36350

reference_id

reference_type

scores

value	0.00012
scoring_system	epss
scoring_elements	0.01827
published_at	2026-04-29T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01788
published_at	2026-04-24T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01783
published_at	2026-04-26T12:55:00Z

value	0.00013
scoring_system	epss
scoring_elements	0.02204
published_at	2026-04-21T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08277
published_at	2026-04-02T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09297
published_at	2026-04-07T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09372
published_at	2026-04-08T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.0942
published_at	2026-04-09T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09434
published_at	2026-04-11T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09405
published_at	2026-04-12T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.0928
published_at	2026-04-16T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09282
published_at	2026-04-18T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.0939
published_at	2026-04-13T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09385
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-36350

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36350
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36350

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109035
reference_id	1109035
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109035

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2350725
reference_id	2350725
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2350725

reference_url

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html

reference_id

amd-sb-7029.html

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-08T20:23:14Z/

url

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html

reference_url	https://access.redhat.com/errata/RHSA-2025:19930
reference_id	RHSA-2025:19930
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19930

reference_url	https://access.redhat.com/errata/RHSA-2025:20095
reference_id	RHSA-2025:20095
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20095

reference_url	https://access.redhat.com/errata/RHSA-2025:20518
reference_id	RHSA-2025:20518
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20518

reference_url	https://usn.ubuntu.com/7833-1/
reference_id	USN-7833-1
reference_type
scores
url	https://usn.ubuntu.com/7833-1/

reference_url	https://usn.ubuntu.com/7833-2/
reference_id	USN-7833-2
reference_type
scores
url	https://usn.ubuntu.com/7833-2/

reference_url	https://usn.ubuntu.com/7833-3/
reference_id	USN-7833-3
reference_type
scores
url	https://usn.ubuntu.com/7833-3/

reference_url	https://usn.ubuntu.com/7833-4/
reference_id	USN-7833-4
reference_type
scores
url	https://usn.ubuntu.com/7833-4/

reference_url	https://usn.ubuntu.com/7834-1/
reference_id	USN-7834-1
reference_type
scores
url	https://usn.ubuntu.com/7834-1/

reference_url	https://usn.ubuntu.com/7848-1/
reference_id	USN-7848-1
reference_type
scores
url	https://usn.ubuntu.com/7848-1/

reference_url	https://usn.ubuntu.com/7856-1/
reference_id	USN-7856-1
reference_type
scores
url	https://usn.ubuntu.com/7856-1/

reference_url	https://usn.ubuntu.com/8028-1/
reference_id	USN-8028-1
reference_type
scores
url	https://usn.ubuntu.com/8028-1/

reference_url	https://usn.ubuntu.com/8028-2/
reference_id	USN-8028-2
reference_type
scores
url	https://usn.ubuntu.com/8028-2/

reference_url	https://usn.ubuntu.com/8028-3/
reference_id	USN-8028-3
reference_type
scores
url	https://usn.ubuntu.com/8028-3/

reference_url	https://usn.ubuntu.com/8028-4/
reference_id	USN-8028-4
reference_type
scores
url	https://usn.ubuntu.com/8028-4/

reference_url	https://usn.ubuntu.com/8028-5/
reference_id	USN-8028-5
reference_type
scores
url	https://usn.ubuntu.com/8028-5/

reference_url	https://usn.ubuntu.com/8028-6/
reference_id	USN-8028-6
reference_type
scores
url	https://usn.ubuntu.com/8028-6/

reference_url	https://usn.ubuntu.com/8028-7/
reference_id	USN-8028-7
reference_type
scores
url	https://usn.ubuntu.com/8028-7/

reference_url	https://usn.ubuntu.com/8028-8/
reference_id	USN-8028-8
reference_type
scores
url	https://usn.ubuntu.com/8028-8/

reference_url	https://usn.ubuntu.com/8031-1/
reference_id	USN-8031-1
reference_type
scores
url	https://usn.ubuntu.com/8031-1/

reference_url	https://usn.ubuntu.com/8031-2/
reference_id	USN-8031-2
reference_type
scores
url	https://usn.ubuntu.com/8031-2/

reference_url	https://usn.ubuntu.com/8031-3/
reference_id	USN-8031-3
reference_type
scores
url	https://usn.ubuntu.com/8031-3/

reference_url	https://usn.ubuntu.com/8052-1/
reference_id	USN-8052-1
reference_type
scores
url	https://usn.ubuntu.com/8052-1/

reference_url	https://usn.ubuntu.com/8052-2/
reference_id	USN-8052-2
reference_type
scores
url	https://usn.ubuntu.com/8052-2/

reference_url	https://usn.ubuntu.com/8074-1/
reference_id	USN-8074-1
reference_type
scores
url	https://usn.ubuntu.com/8074-1/

reference_url	https://usn.ubuntu.com/8074-2/
reference_id	USN-8074-2
reference_type
scores
url	https://usn.ubuntu.com/8074-2/

reference_url	https://usn.ubuntu.com/8126-1/
reference_id	USN-8126-1
reference_type
scores
url	https://usn.ubuntu.com/8126-1/

reference_url	https://xenbits.xen.org/xsa/advisory-471.html
reference_id	XSA-471
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-471.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2024-36350

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j22f-mbqe-a7dk

url VCID-tjgh-waa3-wqgk

vulnerability_id VCID-tjgh-waa3-wqgk

summary Arm issues with page refcounting

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-58144

reference_id

reference_type

scores

value	0.00057
scoring_system	epss
scoring_elements	0.18107
published_at	2026-04-04T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.18052
published_at	2026-04-02T12:55:00Z

value	0.00059
scoring_system	epss
scoring_elements	0.18162
published_at	2026-04-29T12:55:00Z

value	0.00059
scoring_system	epss
scoring_elements	0.18288
published_at	2026-04-18T12:55:00Z

value	0.00059
scoring_system	epss
scoring_elements	0.18313
published_at	2026-04-21T12:55:00Z

value	0.00059
scoring_system	epss
scoring_elements	0.18215
published_at	2026-04-24T12:55:00Z

value	0.00059
scoring_system	epss
scoring_elements	0.182
published_at	2026-04-26T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19249
published_at	2026-04-11T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19202
published_at	2026-04-12T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19147
published_at	2026-04-13T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19106
published_at	2026-04-16T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.1919
published_at	2026-04-08T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19243
published_at	2026-04-09T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19111
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-58144

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58144
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58144

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075
reference_id	1120075
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075

reference_url

https://xenbits.xenproject.org/xsa/advisory-473.html

reference_id

advisory-473.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-09-11T14:18:50Z/

url

https://xenbits.xenproject.org/xsa/advisory-473.html

reference_url	https://xenbits.xen.org/xsa/advisory-473.html
reference_id	XSA-473
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-473.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2025-58144, XSA-473

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tjgh-waa3-wqgk

url VCID-uv8m-bj4c-8fes

vulnerability_id VCID-uv8m-bj4c-8fes

summary x86: Transitive Scheduler Attacks

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-36357.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-36357.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-36357

reference_id

reference_type

scores

value	0.0003
scoring_system	epss
scoring_elements	0.08597
published_at	2026-04-02T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09825
published_at	2026-04-11T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09765
published_at	2026-04-08T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09815
published_at	2026-04-09T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09793
published_at	2026-04-12T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09776
published_at	2026-04-13T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09661
published_at	2026-04-16T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09633
published_at	2026-04-18T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09798
published_at	2026-04-04T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09694
published_at	2026-04-07T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10825
published_at	2026-04-21T12:55:00Z

value	0.00037
scoring_system	epss
scoring_elements	0.10849
published_at	2026-04-24T12:55:00Z

value	0.00037
scoring_system	epss
scoring_elements	0.10808
published_at	2026-04-26T12:55:00Z

value	0.00037
scoring_system	epss
scoring_elements	0.10748
published_at	2026-04-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-36357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36357

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109035
reference_id	1109035
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109035

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2350726
reference_id	2350726
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2350726

reference_url

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html

reference_id

amd-sb-7029.html

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-09T13:36:59Z/

url

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html

reference_url	https://access.redhat.com/errata/RHSA-2025:19930
reference_id	RHSA-2025:19930
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19930

reference_url	https://access.redhat.com/errata/RHSA-2025:20095
reference_id	RHSA-2025:20095
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20095

reference_url	https://access.redhat.com/errata/RHSA-2025:20518
reference_id	RHSA-2025:20518
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20518

reference_url	https://usn.ubuntu.com/7833-1/
reference_id	USN-7833-1
reference_type
scores
url	https://usn.ubuntu.com/7833-1/

reference_url	https://usn.ubuntu.com/7833-2/
reference_id	USN-7833-2
reference_type
scores
url	https://usn.ubuntu.com/7833-2/

reference_url	https://usn.ubuntu.com/7833-3/
reference_id	USN-7833-3
reference_type
scores
url	https://usn.ubuntu.com/7833-3/

reference_url	https://usn.ubuntu.com/7833-4/
reference_id	USN-7833-4
reference_type
scores
url	https://usn.ubuntu.com/7833-4/

reference_url	https://usn.ubuntu.com/7834-1/
reference_id	USN-7834-1
reference_type
scores
url	https://usn.ubuntu.com/7834-1/

reference_url	https://usn.ubuntu.com/7848-1/
reference_id	USN-7848-1
reference_type
scores
url	https://usn.ubuntu.com/7848-1/

reference_url	https://usn.ubuntu.com/7856-1/
reference_id	USN-7856-1
reference_type
scores
url	https://usn.ubuntu.com/7856-1/

reference_url	https://usn.ubuntu.com/8028-1/
reference_id	USN-8028-1
reference_type
scores
url	https://usn.ubuntu.com/8028-1/

reference_url	https://usn.ubuntu.com/8028-2/
reference_id	USN-8028-2
reference_type
scores
url	https://usn.ubuntu.com/8028-2/

reference_url	https://usn.ubuntu.com/8028-3/
reference_id	USN-8028-3
reference_type
scores
url	https://usn.ubuntu.com/8028-3/

reference_url	https://usn.ubuntu.com/8028-4/
reference_id	USN-8028-4
reference_type
scores
url	https://usn.ubuntu.com/8028-4/

reference_url	https://usn.ubuntu.com/8028-5/
reference_id	USN-8028-5
reference_type
scores
url	https://usn.ubuntu.com/8028-5/

reference_url	https://usn.ubuntu.com/8028-6/
reference_id	USN-8028-6
reference_type
scores
url	https://usn.ubuntu.com/8028-6/

reference_url	https://usn.ubuntu.com/8028-7/
reference_id	USN-8028-7
reference_type
scores
url	https://usn.ubuntu.com/8028-7/

reference_url	https://usn.ubuntu.com/8028-8/
reference_id	USN-8028-8
reference_type
scores
url	https://usn.ubuntu.com/8028-8/

reference_url	https://usn.ubuntu.com/8031-1/
reference_id	USN-8031-1
reference_type
scores
url	https://usn.ubuntu.com/8031-1/

reference_url	https://usn.ubuntu.com/8031-2/
reference_id	USN-8031-2
reference_type
scores
url	https://usn.ubuntu.com/8031-2/

reference_url	https://usn.ubuntu.com/8031-3/
reference_id	USN-8031-3
reference_type
scores
url	https://usn.ubuntu.com/8031-3/

reference_url	https://usn.ubuntu.com/8052-1/
reference_id	USN-8052-1
reference_type
scores
url	https://usn.ubuntu.com/8052-1/

reference_url	https://usn.ubuntu.com/8052-2/
reference_id	USN-8052-2
reference_type
scores
url	https://usn.ubuntu.com/8052-2/

reference_url	https://usn.ubuntu.com/8074-1/
reference_id	USN-8074-1
reference_type
scores
url	https://usn.ubuntu.com/8074-1/

reference_url	https://usn.ubuntu.com/8074-2/
reference_id	USN-8074-2
reference_type
scores
url	https://usn.ubuntu.com/8074-2/

reference_url	https://usn.ubuntu.com/8126-1/
reference_id	USN-8126-1
reference_type
scores
url	https://usn.ubuntu.com/8126-1/

reference_url	https://xenbits.xen.org/xsa/advisory-471.html
reference_id	XSA-471
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-471.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2024-36357, XSA-471

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uv8m-bj4c-8fes

url VCID-vv23-mvyn-87hg

vulnerability_id VCID-vv23-mvyn-87hg

summary Mutiple vulnerabilities in the Viridian interface

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-58143

reference_id

reference_type

scores

value	0.00047
scoring_system	epss
scoring_elements	0.14661
published_at	2026-04-02T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.14732
published_at	2026-04-04T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15748
published_at	2026-04-21T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15762
published_at	2026-04-26T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.1572
published_at	2026-04-29T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15702
published_at	2026-04-18T12:55:00Z

value	0.00051
scoring_system	epss
scoring_elements	0.15764
published_at	2026-04-24T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16805
published_at	2026-04-11T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16688
published_at	2026-04-07T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16773
published_at	2026-04-08T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16827
published_at	2026-04-09T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16761
published_at	2026-04-12T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16703
published_at	2026-04-13T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16641
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-58143

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58143
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58143

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075
reference_id	1120075
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075

reference_url

https://xenbits.xenproject.org/xsa/advisory-472.html

reference_id

advisory-472.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-09-11T14:21:09Z/

url

https://xenbits.xenproject.org/xsa/advisory-472.html

reference_url	https://xenbits.xen.org/xsa/advisory-472.html
reference_id	XSA-472
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-472.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2025-58143

risk_score 2.5

exploitability 0.5

weighted_severity 4.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vv23-mvyn-87hg

url VCID-wz1m-aeaf-nkg7

vulnerability_id VCID-wz1m-aeaf-nkg7

summary Mutiple vulnerabilities in the Viridian interface

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-58142

reference_id

reference_type

scores

value	0.00025
scoring_system	epss
scoring_elements	0.0691
published_at	2026-04-02T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.0696
published_at	2026-04-04T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07717
published_at	2026-04-21T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07643
published_at	2026-04-26T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07611
published_at	2026-04-29T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07576
published_at	2026-04-18T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07665
published_at	2026-04-24T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08147
published_at	2026-04-11T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08071
published_at	2026-04-07T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08132
published_at	2026-04-08T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08154
published_at	2026-04-09T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08127
published_at	2026-04-12T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.0811
published_at	2026-04-13T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08017
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-58142

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58142
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58142

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075
reference_id	1120075
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075

reference_url

https://xenbits.xenproject.org/xsa/advisory-472.html

reference_id

advisory-472.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-09-11T14:24:28Z/

url

https://xenbits.xenproject.org/xsa/advisory-472.html

reference_url	https://xenbits.xen.org/xsa/advisory-472.html
reference_id	XSA-472
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-472.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2025-58142, XSA-472

risk_score 2.5

exploitability 0.5

weighted_severity 4.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wz1m-aeaf-nkg7

url VCID-xqpz-y83m-4uc4

vulnerability_id VCID-xqpz-y83m-4uc4

summary x86: Incorrect stubs exception handling for flags recovery

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27465

reference_id

reference_type

scores

value	0.00082
scoring_system	epss
scoring_elements	0.23924
published_at	2026-04-07T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24105
published_at	2026-04-02T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24037
published_at	2026-04-09T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.2399
published_at	2026-04-08T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24143
published_at	2026-04-04T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25463
published_at	2026-04-29T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25569
published_at	2026-04-21T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25519
published_at	2026-04-24T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25511
published_at	2026-04-26T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25711
published_at	2026-04-11T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.2567
published_at	2026-04-12T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25612
published_at	2026-04-13T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25613
published_at	2026-04-16T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25598
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27465

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27465
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27465

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075
reference_id	1120075
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120075

reference_url

https://xenbits.xenproject.org/xsa/advisory-470.html

reference_id

advisory-470.html

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-16T20:46:06Z/

url

https://xenbits.xenproject.org/xsa/advisory-470.html

reference_url	https://xenbits.xen.org/xsa/advisory-470.html
reference_id	XSA-470
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-470.html

fixed_packages

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
purl	pkg:deb/debian/xen@4.20.2%2B7-g1badcf5035-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

aliases CVE-2025-27465, XSA-470

risk_score 1.8

exploitability 0.5

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xqpz-y83m-4uc4

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B7-g1badcf5035-1%3Fdistro=trixie

Package Instance