{"url":"http://public2.vulnerablecode.io/api/packages/105873?format=json","purl":"pkg:rpm/redhat/redhat-release-virtualization-host@4.3.4-1?arch=el7ev","type":"rpm","namespace":"redhat","name":"redhat-release-virtualization-host","version":"4.3.4-1","qualifiers":{"arch":"el7ev"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79046?format=json","vulnerability_id":"VCID-a578-bsgc-mugs","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11479.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11479.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11479","reference_id":"","reference_type":"","scores":[{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94233","published_at":"2026-05-09T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94182","published_at":"2026-04-13T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94198","published_at":"2026-04-16T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94202","published_at":"2026-04-21T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94205","published_at":"2026-04-24T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94206","published_at":"2026-04-29T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94209","published_at":"2026-05-05T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94221","published_at":"2026-05-07T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94162","published_at":"2026-04-04T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94164","published_at":"2026-04-07T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94174","published_at":"2026-04-08T12:55:00Z"},{"value":"0.1336","scoring_system":"epss","scoring_elements":"0.94178","published_at":"2026-04-09T12:55:00Z"},{"value":"0.13578","scoring_system":"epss","scoring_elements":"0.94191","published_at":"2026-04-01T12:55:00Z"},{"value":"0.13578","scoring_system":"epss","scoring_elements":"0.942","published_at":"2026-04-02T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11479"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10126","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11478","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11478"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11479","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11479"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11486","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11486"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11815","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11815"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11884","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11884"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3846","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3846"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5489","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5489"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9500","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9500"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9503","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9503"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1719129","reference_id":"1719129","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1719129"},{"reference_url":"https://security.archlinux.org/ASA-201906-12","reference_id":"ASA-201906-12","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-12"},{"reference_url":"https://security.archlinux.org/ASA-201906-13","reference_id":"ASA-201906-13","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-13"},{"reference_url":"https://security.archlinux.org/ASA-201906-14","reference_id":"ASA-201906-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-14"},{"reference_url":"https://security.archlinux.org/ASA-201906-15","reference_id":"ASA-201906-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-15"},{"reference_url":"https://security.archlinux.org/AVG-983","reference_id":"AVG-983","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-983"},{"reference_url":"https://security.archlinux.org/AVG-984","reference_id":"AVG-984","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-984"},{"reference_url":"https://security.archlinux.org/AVG-985","reference_id":"AVG-985","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-985"},{"reference_url":"https://security.archlinux.org/AVG-986","reference_id":"AVG-986","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-986"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1479","reference_id":"RHSA-2019:1479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1479"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1480","reference_id":"RHSA-2019:1480","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1480"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1481","reference_id":"RHSA-2019:1481","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1481"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1482","reference_id":"RHSA-2019:1482","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1482"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1483","reference_id":"RHSA-2019:1483","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1484","reference_id":"RHSA-2019:1484","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1484"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1485","reference_id":"RHSA-2019:1485","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1485"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1486","reference_id":"RHSA-2019:1486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1486"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1487","reference_id":"RHSA-2019:1487","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1487"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1488","reference_id":"RHSA-2019:1488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1489","reference_id":"RHSA-2019:1489","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1490","reference_id":"RHSA-2019:1490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1594","reference_id":"RHSA-2019:1594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1602","reference_id":"RHSA-2019:1602","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1602"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1699","reference_id":"RHSA-2019:1699","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1699"},{"reference_url":"https://usn.ubuntu.com/4041-1/","reference_id":"USN-4041-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4041-1/"},{"reference_url":"https://usn.ubuntu.com/4041-2/","reference_id":"USN-4041-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4041-2/"}],"fixed_packages":[],"aliases":["CVE-2019-11479"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a578-bsgc-mugs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/60682?format=json","vulnerability_id":"VCID-a5ed-jnjb-pybr","summary":"Multiple vulnerabilities have been discovered in libvirt, the worst\n    of which may result in the execution of arbitrary commands.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10168.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10168.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10168","reference_id":"","reference_type":"","scores":[{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45677","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45742","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45765","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45714","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45771","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45768","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45791","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45761","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45766","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45816","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45811","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45757","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45687","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45698","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45638","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45533","published_at":"2026-05-05T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45596","published_at":"2026-05-07T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45614","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10168"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10168","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10168"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1720118","reference_id":"1720118","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1720118"},{"reference_url":"https://security.gentoo.org/glsa/202003-18","reference_id":"GLSA-202003-18","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-18"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1579","reference_id":"RHSA-2019:1579","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1579"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1580","reference_id":"RHSA-2019:1580","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1580"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1699","reference_id":"RHSA-2019:1699","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1762","reference_id":"RHSA-2019:1762","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1762"},{"reference_url":"https://usn.ubuntu.com/4047-1/","reference_id":"USN-4047-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4047-1/"}],"fixed_packages":[],"aliases":["CVE-2019-10168"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a5ed-jnjb-pybr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/60680?format=json","vulnerability_id":"VCID-b489-x5z3-pkfh","summary":"Multiple vulnerabilities have been discovered in libvirt, the worst\n    of which may result in the execution of arbitrary commands.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10166.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10166.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10166","reference_id":"","reference_type":"","scores":[{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34157","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34496","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34524","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34391","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34433","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34463","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34464","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34426","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34402","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34436","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34423","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34382","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34011","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.33993","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.33907","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.33785","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.33854","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.33896","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10166"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10166","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10166"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1720114","reference_id":"1720114","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1720114"},{"reference_url":"https://security.gentoo.org/glsa/202003-18","reference_id":"GLSA-202003-18","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-18"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1579","reference_id":"RHSA-2019:1579","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1579"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1580","reference_id":"RHSA-2019:1580","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1580"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1699","reference_id":"RHSA-2019:1699","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1762","reference_id":"RHSA-2019:1762","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1762"},{"reference_url":"https://usn.ubuntu.com/4047-1/","reference_id":"USN-4047-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4047-1/"}],"fixed_packages":[],"aliases":["CVE-2019-10166"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b489-x5z3-pkfh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79045?format=json","vulnerability_id":"VCID-gk2q-ycdz-quc3","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11478.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11478.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11478","reference_id":"","reference_type":"","scores":[{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96664","published_at":"2026-05-09T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96636","published_at":"2026-04-16T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96641","published_at":"2026-04-18T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96645","published_at":"2026-04-26T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96643","published_at":"2026-04-24T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96647","published_at":"2026-04-29T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96655","published_at":"2026-05-05T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96658","published_at":"2026-05-07T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.9661","published_at":"2026-04-04T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96614","published_at":"2026-04-07T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96622","published_at":"2026-04-08T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96624","published_at":"2026-04-09T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96626","published_at":"2026-04-11T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96627","published_at":"2026-04-12T12:55:00Z"},{"value":"0.29758","scoring_system":"epss","scoring_elements":"0.96629","published_at":"2026-04-13T12:55:00Z"},{"value":"0.30132","scoring_system":"epss","scoring_elements":"0.9664","published_at":"2026-04-01T12:55:00Z"},{"value":"0.30132","scoring_system":"epss","scoring_elements":"0.96649","published_at":"2026-04-02T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11478"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10126","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11478","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11478"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11479","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11479"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11486","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11486"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11815","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11815"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11884","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11884"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3846","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3846"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5489","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5489"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9500","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9500"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9503","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9503"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1719128","reference_id":"1719128","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1719128"},{"reference_url":"https://security.archlinux.org/ASA-201906-12","reference_id":"ASA-201906-12","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-12"},{"reference_url":"https://security.archlinux.org/ASA-201906-13","reference_id":"ASA-201906-13","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-13"},{"reference_url":"https://security.archlinux.org/ASA-201906-14","reference_id":"ASA-201906-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-14"},{"reference_url":"https://security.archlinux.org/ASA-201906-15","reference_id":"ASA-201906-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-15"},{"reference_url":"https://security.archlinux.org/AVG-983","reference_id":"AVG-983","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-983"},{"reference_url":"https://security.archlinux.org/AVG-984","reference_id":"AVG-984","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-984"},{"reference_url":"https://security.archlinux.org/AVG-985","reference_id":"AVG-985","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-985"},{"reference_url":"https://security.archlinux.org/AVG-986","reference_id":"AVG-986","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-986"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1479","reference_id":"RHSA-2019:1479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1479"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1480","reference_id":"RHSA-2019:1480","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1480"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1481","reference_id":"RHSA-2019:1481","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1481"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1482","reference_id":"RHSA-2019:1482","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1482"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1483","reference_id":"RHSA-2019:1483","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1484","reference_id":"RHSA-2019:1484","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1484"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1485","reference_id":"RHSA-2019:1485","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1485"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1486","reference_id":"RHSA-2019:1486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1486"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1487","reference_id":"RHSA-2019:1487","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1487"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1488","reference_id":"RHSA-2019:1488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1489","reference_id":"RHSA-2019:1489","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1490","reference_id":"RHSA-2019:1490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1594","reference_id":"RHSA-2019:1594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1602","reference_id":"RHSA-2019:1602","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1602"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1699","reference_id":"RHSA-2019:1699","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1699"},{"reference_url":"https://usn.ubuntu.com/4017-1/","reference_id":"USN-4017-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4017-1/"},{"reference_url":"https://usn.ubuntu.com/4017-2/","reference_id":"USN-4017-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4017-2/"}],"fixed_packages":[],"aliases":["CVE-2019-11478"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gk2q-ycdz-quc3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/60679?format=json","vulnerability_id":"VCID-gp93-s21f-8fh7","summary":"Multiple vulnerabilities have been discovered in libvirt, the worst\n    of which may result in the execution of arbitrary commands.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10161.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10161.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10161","reference_id":"","reference_type":"","scores":[{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49809","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49847","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49874","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49826","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49881","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49875","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49893","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49865","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49866","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49912","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49913","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49885","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49871","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49878","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49833","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49751","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.4981","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49838","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10167","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10167"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1720115","reference_id":"1720115","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1720115"},{"reference_url":"https://security.gentoo.org/glsa/202003-18","reference_id":"GLSA-202003-18","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-18"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1578","reference_id":"RHSA-2019:1578","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1578"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1579","reference_id":"RHSA-2019:1579","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1579"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1580","reference_id":"RHSA-2019:1580","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1580"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1699","reference_id":"RHSA-2019:1699","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1762","reference_id":"RHSA-2019:1762","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1762"},{"reference_url":"https://usn.ubuntu.com/4047-1/","reference_id":"USN-4047-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4047-1/"},{"reference_url":"https://usn.ubuntu.com/4047-2/","reference_id":"USN-4047-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4047-2/"}],"fixed_packages":[],"aliases":["CVE-2019-10161"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gp93-s21f-8fh7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/60681?format=json","vulnerability_id":"VCID-nfem-925f-bfdw","summary":"Multiple vulnerabilities have been discovered in libvirt, the worst\n    of which may result in the execution of arbitrary commands.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10167.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10167.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10167","reference_id":"","reference_type":"","scores":[{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.37993","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38174","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38197","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38067","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38117","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38126","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38144","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38107","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38083","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38129","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.3811","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.38046","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.3783","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.37807","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.37712","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.37603","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.37673","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00169","scoring_system":"epss","scoring_elements":"0.3769","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10167"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10167","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10167"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1720117","reference_id":"1720117","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1720117"},{"reference_url":"https://security.gentoo.org/glsa/202003-18","reference_id":"GLSA-202003-18","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-18"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1579","reference_id":"RHSA-2019:1579","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1579"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1580","reference_id":"RHSA-2019:1580","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1580"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1699","reference_id":"RHSA-2019:1699","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1762","reference_id":"RHSA-2019:1762","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1762"},{"reference_url":"https://usn.ubuntu.com/4047-1/","reference_id":"USN-4047-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4047-1/"}],"fixed_packages":[],"aliases":["CVE-2019-10167"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nfem-925f-bfdw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79044?format=json","vulnerability_id":"VCID-qhvv-w8ef-v3bj","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11477.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11477.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11477","reference_id":"","reference_type":"","scores":[{"value":"0.69918","scoring_system":"epss","scoring_elements":"0.98686","published_at":"2026-05-09T12:55:00Z"},{"value":"0.69918","scoring_system":"epss","scoring_elements":"0.98684","published_at":"2026-05-05T12:55:00Z"},{"value":"0.69918","scoring_system":"epss","scoring_elements":"0.98685","published_at":"2026-05-07T12:55:00Z"},{"value":"0.74296","scoring_system":"epss","scoring_elements":"0.98841","published_at":"2026-04-13T12:55:00Z"},{"value":"0.74296","scoring_system":"epss","scoring_elements":"0.98845","published_at":"2026-04-16T12:55:00Z"},{"value":"0.74296","scoring_system":"epss","scoring_elements":"0.98847","published_at":"2026-04-18T12:55:00Z"},{"value":"0.74296","scoring_system":"epss","scoring_elements":"0.98851","published_at":"2026-04-21T12:55:00Z"},{"value":"0.74296","scoring_system":"epss","scoring_elements":"0.98834","published_at":"2026-04-04T12:55:00Z"},{"value":"0.74296","scoring_system":"epss","scoring_elements":"0.98836","published_at":"2026-04-07T12:55:00Z"},{"value":"0.74296","scoring_system":"epss","scoring_elements":"0.98837","published_at":"2026-04-09T12:55:00Z"},{"value":"0.74296","scoring_system":"epss","scoring_elements":"0.98839","published_at":"2026-04-11T12:55:00Z"},{"value":"0.74296","scoring_system":"epss","scoring_elements":"0.9884","published_at":"2026-04-12T12:55:00Z"},{"value":"0.74552","scoring_system":"epss","scoring_elements":"0.98841","published_at":"2026-04-01T12:55:00Z"},{"value":"0.74552","scoring_system":"epss","scoring_elements":"0.98843","published_at":"2026-04-02T12:55:00Z"},{"value":"0.74658","scoring_system":"epss","scoring_elements":"0.98869","published_at":"2026-04-29T12:55:00Z"},{"value":"0.74658","scoring_system":"epss","scoring_elements":"0.98868","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11477"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10126","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11478","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11478"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11479","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11479"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11486","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11486"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11815","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11815"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11884","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11884"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3846","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3846"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5489","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5489"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9500","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9500"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9503","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9503"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1719123","reference_id":"1719123","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1719123"},{"reference_url":"https://security.archlinux.org/ASA-201906-12","reference_id":"ASA-201906-12","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-12"},{"reference_url":"https://security.archlinux.org/ASA-201906-13","reference_id":"ASA-201906-13","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-13"},{"reference_url":"https://security.archlinux.org/ASA-201906-14","reference_id":"ASA-201906-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-14"},{"reference_url":"https://security.archlinux.org/ASA-201906-15","reference_id":"ASA-201906-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201906-15"},{"reference_url":"https://security.archlinux.org/AVG-983","reference_id":"AVG-983","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-983"},{"reference_url":"https://security.archlinux.org/AVG-984","reference_id":"AVG-984","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-984"},{"reference_url":"https://security.archlinux.org/AVG-985","reference_id":"AVG-985","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-985"},{"reference_url":"https://security.archlinux.org/AVG-986","reference_id":"AVG-986","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-986"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1479","reference_id":"RHSA-2019:1479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1479"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1480","reference_id":"RHSA-2019:1480","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1480"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1481","reference_id":"RHSA-2019:1481","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1481"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1482","reference_id":"RHSA-2019:1482","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1482"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1483","reference_id":"RHSA-2019:1483","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1484","reference_id":"RHSA-2019:1484","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1484"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1485","reference_id":"RHSA-2019:1485","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1485"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1486","reference_id":"RHSA-2019:1486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1486"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1487","reference_id":"RHSA-2019:1487","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1487"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1488","reference_id":"RHSA-2019:1488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1489","reference_id":"RHSA-2019:1489","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1490","reference_id":"RHSA-2019:1490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1594","reference_id":"RHSA-2019:1594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1602","reference_id":"RHSA-2019:1602","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1602"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1699","reference_id":"RHSA-2019:1699","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1699"},{"reference_url":"https://usn.ubuntu.com/4017-1/","reference_id":"USN-4017-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4017-1/"},{"reference_url":"https://usn.ubuntu.com/4017-2/","reference_id":"USN-4017-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4017-2/"}],"fixed_packages":[],"aliases":["CVE-2019-11477"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qhvv-w8ef-v3bj"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/redhat-release-virtualization-host@4.3.4-1%3Farch=el7ev"}