{"url":"http://public2.vulnerablecode.io/api/packages/106838?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.5.1%2Bdfsg1-0.1?distro=trixie","type":"deb","namespace":"debian","name":"virtuoso-opensource","version":"7.2.5.1+dfsg1-0.1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"7.2.12+dfsg-0.2","latest_non_vulnerable_version":"7.2.12+dfsg-4","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137197?format=json","vulnerability_id":"VCID-1kq1-9qe1-5bf4","summary":"An issue in the __libc_malloc component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31607.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31607.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31607","reference_id":"","reference_type":"","scores":[{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22143","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31607"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31607","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31607"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1120","reference_id":"1120","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T18:51:02Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1120"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209877","reference_id":"2209877","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209877"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31607"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1kq1-9qe1-5bf4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59360?format=json","vulnerability_id":"VCID-25rp-h9wp-tyby","summary":"An issue in the sqlexp component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57641.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57641.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57641","reference_id":"","reference_type":"","scores":[{"value":"0.00305","scoring_system":"epss","scoring_elements":"0.54185","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57641"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57641","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57641"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1183","reference_id":"1183","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:32:41Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1183"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337545","reference_id":"2337545","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337545"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57641"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-25rp-h9wp-tyby"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137250?format=json","vulnerability_id":"VCID-2dzc-em2d-zffq","summary":"An issue in the sch_name_to_object component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31619.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31619.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31619","reference_id":"","reference_type":"","scores":[{"value":"0.0009","scoring_system":"epss","scoring_elements":"0.25566","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31619"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1133","reference_id":"1133","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:59:00Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1133"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209919","reference_id":"2209919","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209919"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31619"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2dzc-em2d-zffq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59198?format=json","vulnerability_id":"VCID-33gt-1k87-6kgz","summary":"An issue in the qi_inst_state_free component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57645.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57645.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57645","reference_id":"","reference_type":"","scores":[{"value":"0.00399","scoring_system":"epss","scoring_elements":"0.61088","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57645"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57645","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57645"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1197","reference_id":"1197","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:28:22Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1197"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337526","reference_id":"2337526","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337526"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57645"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-33gt-1k87-6kgz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137017?format=json","vulnerability_id":"VCID-3btk-z4cu-1kcq","summary":"An issue in the mp_box_deserialize_string function in openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31614.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31614.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31614","reference_id":"","reference_type":"","scores":[{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34533","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31614"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31614","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31614"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1117","reference_id":"1117","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T20:09:19Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1117"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209911","reference_id":"2209911","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209911"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31614"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3btk-z4cu-1kcq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59151?format=json","vulnerability_id":"VCID-45cf-jj6z-b3d7","summary":"An issue in the qst_vec_get_int64 component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57654.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57654.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57654","reference_id":"","reference_type":"","scores":[{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.5129","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57654"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57654","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57654"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1205","reference_id":"1205","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-14T16:11:46Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1205"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337532","reference_id":"2337532","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337532"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57654"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-45cf-jj6z-b3d7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137179?format=json","vulnerability_id":"VCID-4c4e-97n6-7qgf","summary":"An issue in the sqlo_preds_contradiction component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31631.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31631.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31631","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24205","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31631"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31631","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31631"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1137","reference_id":"1137","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T19:40:29Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1137"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209935","reference_id":"2209935","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209935"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31631"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4c4e-97n6-7qgf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/136886?format=json","vulnerability_id":"VCID-4n4z-rwug-ckht","summary":"An issue in the chash_array component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31615.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31615.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31615","reference_id":"","reference_type":"","scores":[{"value":"0.0011","scoring_system":"epss","scoring_elements":"0.29015","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31615","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31615"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1124","reference_id":"1124","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T20:07:18Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1124"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209913","reference_id":"2209913","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209913"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31615"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4n4z-rwug-ckht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59118?format=json","vulnerability_id":"VCID-52jh-68cy-zudv","summary":"An issue in the numeric_to_dv component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57652.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57652.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57652","reference_id":"","reference_type":"","scores":[{"value":"0.00378","scoring_system":"epss","scoring_elements":"0.59775","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57652"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1198","reference_id":"1198","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:07:49Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1198"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337541","reference_id":"2337541","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337541"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57652"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-52jh-68cy-zudv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210033?format=json","vulnerability_id":"VCID-5azb-a7pf-2ba3","summary":"An issue in the box_mpy function of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48946.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48946.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48946","reference_id":"","reference_type":"","scores":[{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25641","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48946"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48946"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062","reference_id":"1059062","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253138","reference_id":"2253138","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253138"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-48946"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5azb-a7pf-2ba3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137018?format=json","vulnerability_id":"VCID-6bz8-fuu1-gfc9","summary":"An issue in the gpf_notice component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31626.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31626.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31626","reference_id":"","reference_type":"","scores":[{"value":"0.00154","scoring_system":"epss","scoring_elements":"0.3595","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31626"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1129","reference_id":"1129","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T20:01:19Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1129"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209928","reference_id":"2209928","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209928"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31626"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6bz8-fuu1-gfc9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59142?format=json","vulnerability_id":"VCID-77hu-78ge-mqaw","summary":"An issue in the psiginfo component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57646.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57646.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57646","reference_id":"","reference_type":"","scores":[{"value":"0.00305","scoring_system":"epss","scoring_elements":"0.54185","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57646"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57646","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57646"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1199","reference_id":"1199","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:25:41Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1199"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337495","reference_id":"2337495","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337495"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57646"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-77hu-78ge-mqaw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/146260?format=json","vulnerability_id":"VCID-78m7-9pp8-d7ar","summary":"An issue in the box_equal function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48951.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48951.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48951","reference_id":"","reference_type":"","scores":[{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20517","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48951"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48951","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48951"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062","reference_id":"1059062","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1177","reference_id":"1177","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-05T13:44:03Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1177"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253128","reference_id":"2253128","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253128"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-48951"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-78m7-9pp8-d7ar"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59246?format=json","vulnerability_id":"VCID-7agb-bju3-pfgj","summary":"An issue in the dfe_n_in_order component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57655.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57655.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57655","reference_id":"","reference_type":"","scores":[{"value":"0.00211","scoring_system":"epss","scoring_elements":"0.4365","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57655"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57655","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57655"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1216","reference_id":"1216","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-16T16:00:45Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1216"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337505","reference_id":"2337505","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337505"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57655"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7agb-bju3-pfgj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137070?format=json","vulnerability_id":"VCID-843z-c77a-4bd2","summary":"An issue in the strhash component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31627.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31627.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31627","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24205","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31627"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31627","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31627"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1140","reference_id":"1140","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T19:55:34Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1140"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209931","reference_id":"2209931","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209931"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31627"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-843z-c77a-4bd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210039?format=json","vulnerability_id":"VCID-9e3z-dpgs-ykeb","summary":"An issue in the box_col_len function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48950.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48950.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48950","reference_id":"","reference_type":"","scores":[{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25641","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48950"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48950","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48950"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062","reference_id":"1059062","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253132","reference_id":"2253132","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253132"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-48950"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9e3z-dpgs-ykeb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59120?format=json","vulnerability_id":"VCID-a66j-ppg3-rufj","summary":"An issue in the dfe_body_copy component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57638.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57638.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57638","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57638"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57638","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57638"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1190","reference_id":"1190","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:40:36Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1190"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337528","reference_id":"2337528","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337528"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57638"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a66j-ppg3-rufj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59369?format=json","vulnerability_id":"VCID-a7w9-r82w-jkc3","summary":"An issue in the jp_add component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57651.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57651.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57651","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57651"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57651"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1196","reference_id":"1196","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:10:49Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1196"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337516","reference_id":"2337516","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337516"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57651"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a7w9-r82w-jkc3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59233?format=json","vulnerability_id":"VCID-ae43-xnaf-pud3","summary":"An issue in the itc_sample_row_check component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57636.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57636.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57636","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57636"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57636","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57636"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1194","reference_id":"1194","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-14T15:34:56Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1194"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337544","reference_id":"2337544","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337544"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57636"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ae43-xnaf-pud3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59366?format=json","vulnerability_id":"VCID-agvx-f2z4-6fft","summary":"An issue in the row_insert_cast component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57647.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57647.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57647","reference_id":"","reference_type":"","scores":[{"value":"0.00399","scoring_system":"epss","scoring_elements":"0.61088","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57647"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57647","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57647"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1207","reference_id":"1207","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:23:39Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1207"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337540","reference_id":"2337540","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337540"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57647"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-agvx-f2z4-6fft"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137297?format=json","vulnerability_id":"VCID-b35m-g716-uqcs","summary":"An issue in the dfe_qexp_list component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31612.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31612.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31612","reference_id":"","reference_type":"","scores":[{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34533","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31612"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31612","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31612"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1125","reference_id":"1125","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T16:48:45Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1125"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209908","reference_id":"2209908","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209908"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31612"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b35m-g716-uqcs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59081?format=json","vulnerability_id":"VCID-b449-h74y-bufp","summary":"An issue in the dc_add_int component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57640.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57640.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57640","reference_id":"","reference_type":"","scores":[{"value":"0.00399","scoring_system":"epss","scoring_elements":"0.61088","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57640"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57640","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57640"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1184","reference_id":"1184","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:34:28Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1184"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337490","reference_id":"2337490","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337490"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57640"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b449-h74y-bufp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/136902?format=json","vulnerability_id":"VCID-bh4q-vrfb-dbbk","summary":"An issue in the bif_mod component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31616.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31616.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31616","reference_id":"","reference_type":"","scores":[{"value":"0.00069","scoring_system":"epss","scoring_elements":"0.21354","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31616"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1122","reference_id":"1122","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T20:00:59Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1122"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209916","reference_id":"2209916","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209916"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31616"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bh4q-vrfb-dbbk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59045?format=json","vulnerability_id":"VCID-bj1r-fc88-abbw","summary":"An issue in the qi_inst_state_free component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57650.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57650.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57650","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57650"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57650","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57650"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1204","reference_id":"1204","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:14:07Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1204"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337551","reference_id":"2337551","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337551"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57650"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bj1r-fc88-abbw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59190?format=json","vulnerability_id":"VCID-c2p5-swgc-kqg7","summary":"An issue in the itc_set_param_row component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57648.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57648.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57648","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57648"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57648","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57648"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1195","reference_id":"1195","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:19:55Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1195"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337550","reference_id":"2337550","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337550"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57648"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c2p5-swgc-kqg7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137134?format=json","vulnerability_id":"VCID-ch5e-z78m-8yb1","summary":"An issue in the __nss_database_lookup component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31613.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31613.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31613","reference_id":"","reference_type":"","scores":[{"value":"0.00269","scoring_system":"epss","scoring_elements":"0.50642","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31613"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1121","reference_id":"1121","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T16:46:00Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1121"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209910","reference_id":"2209910","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209910"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31613"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ch5e-z78m-8yb1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137160?format=json","vulnerability_id":"VCID-ckh7-6cvf-47ec","summary":"An issue in the sqlo_query_spec component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31630.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31630.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31630","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24205","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31630"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31630","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31630"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1138","reference_id":"1138","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T19:50:51Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1138"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209934","reference_id":"2209934","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209934"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31630"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ckh7-6cvf-47ec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137132?format=json","vulnerability_id":"VCID-d3dq-mwye-b7hb","summary":"An issue in the stricmp component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31628.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31628.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31628","reference_id":"","reference_type":"","scores":[{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22143","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31628"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1141","reference_id":"1141","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T19:53:38Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1141"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209932","reference_id":"2209932","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209932"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31628"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d3dq-mwye-b7hb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137014?format=json","vulnerability_id":"VCID-d8tf-3pc5-2yfu","summary":"An issue in the sinv_check_exp component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31624.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31624.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31624","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24205","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31624"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1134","reference_id":"1134","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T20:18:49Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1134"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209926","reference_id":"2209926","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209926"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31624"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d8tf-3pc5-2yfu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59067?format=json","vulnerability_id":"VCID-e47w-mdvy-6yfw","summary":"An issue in the sql_tree_hash_1 component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57658.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57658.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57658","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57658"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57658","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57658"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1209","reference_id":"1209","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:53:26Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1209"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337534","reference_id":"2337534","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337534"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57658"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e47w-mdvy-6yfw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59274?format=json","vulnerability_id":"VCID-e6zd-jyen-y3da","summary":"An issue in the sqlg_vec_upd component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57657.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57657.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57657","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57657"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57657","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57657"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1219","reference_id":"1219","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:55:34Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1219"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337503","reference_id":"2337503","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337503"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57657"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e6zd-jyen-y3da"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59074?format=json","vulnerability_id":"VCID-edu8-fn77-eqfu","summary":"An issue in the sqlg_place_dpipes component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57663.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57663.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57663","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29345","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57663"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57663","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57663"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1218","reference_id":"1218","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T17:00:35Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1218"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337524","reference_id":"2337524","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337524"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57663"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-edu8-fn77-eqfu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59076?format=json","vulnerability_id":"VCID-en2n-d8yz-3yeb","summary":"An issue in the qst_vec_set_copy component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57653.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57653.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57653","reference_id":"","reference_type":"","scores":[{"value":"0.00378","scoring_system":"epss","scoring_elements":"0.59775","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57653"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57653","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57653"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1208","reference_id":"1208","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:04:46Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1208"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337514","reference_id":"2337514","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337514"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57653"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-en2n-d8yz-3yeb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59256?format=json","vulnerability_id":"VCID-fw8z-wz6d-muc1","summary":"An issue in the sqlc_add_distinct_node component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57656.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57656.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57656","reference_id":"","reference_type":"","scores":[{"value":"0.00469","scoring_system":"epss","scoring_elements":"0.6499","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57656"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57656","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57656"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1210","reference_id":"1210","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:57:33Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1210"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337539","reference_id":"2337539","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337539"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:4039","reference_id":"RHSA-2025:4039","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:4039"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57656"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fw8z-wz6d-muc1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137093?format=json","vulnerability_id":"VCID-fyfc-fa68-j7g4","summary":"An issue in the kc_var_col component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31621.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31621.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31621","reference_id":"","reference_type":"","scores":[{"value":"0.00382","scoring_system":"epss","scoring_elements":"0.59995","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31621"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1130","reference_id":"1130","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-24T14:57:17Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1130"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209922","reference_id":"2209922","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209922"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31621"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fyfc-fa68-j7g4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210036?format=json","vulnerability_id":"VCID-guhu-kcvp-qfgp","summary":"An issue in the box_div function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48948.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48948.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48948","reference_id":"","reference_type":"","scores":[{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.20837","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48948"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48948","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48948"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062","reference_id":"1059062","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253135","reference_id":"2253135","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253135"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-48948"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-guhu-kcvp-qfgp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59124?format=json","vulnerability_id":"VCID-hmyu-22v1-77a6","summary":"An issue in the dc_elt_size component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57639.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57639.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57639","reference_id":"","reference_type":"","scores":[{"value":"0.00399","scoring_system":"epss","scoring_elements":"0.61088","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57639"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57639","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57639"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1185","reference_id":"1185","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:37:07Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1185"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337513","reference_id":"2337513","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337513"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57639"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hmyu-22v1-77a6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137291?format=json","vulnerability_id":"VCID-j4md-8mbw-67gx","summary":"An issue in the artm_div_int component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31608.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31608.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31608","reference_id":"","reference_type":"","scores":[{"value":"0.0011","scoring_system":"epss","scoring_elements":"0.29015","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31608"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1123","reference_id":"1123","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T18:48:56Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1123"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209878","reference_id":"2209878","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209878"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31608"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j4md-8mbw-67gx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137007?format=json","vulnerability_id":"VCID-kk96-ca1b-gueu","summary":"An issue in the dv_compare component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31620.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31620.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31620","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24205","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31620"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1128","reference_id":"1128","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-24T15:06:25Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1128"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209921","reference_id":"2209921","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209921"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31620"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kk96-ca1b-gueu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59291?format=json","vulnerability_id":"VCID-mfm2-dxw1-vbdd","summary":"An issue in the dfe_unit_gb_dependant component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57637.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57637.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57637","reference_id":"","reference_type":"","scores":[{"value":"0.00378","scoring_system":"epss","scoring_elements":"0.59775","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57637"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57637","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57637"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1192","reference_id":"1192","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-14T15:32:27Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1192"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337500","reference_id":"2337500","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337500"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57637"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mfm2-dxw1-vbdd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59192?format=json","vulnerability_id":"VCID-n67q-s53x-r3as","summary":"An issue in the sqlo_df component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57661.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57661.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57661","reference_id":"","reference_type":"","scores":[{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20711","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57661"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57661","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57661"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1220","reference_id":"1220","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-14T15:59:46Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1220"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337533","reference_id":"2337533","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337533"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57661"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n67q-s53x-r3as"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59037?format=json","vulnerability_id":"VCID-nazx-bda5-5fea","summary":"An issue in the sqlg_parallel_ts_seq component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57659.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57659.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57659","reference_id":"","reference_type":"","scores":[{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.5129","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57659"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57659","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57659"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1212","reference_id":"1212","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T14:56:33Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1212"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337552","reference_id":"2337552","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337552"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57659"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nazx-bda5-5fea"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59314?format=json","vulnerability_id":"VCID-ng5m-bstg-9ffg","summary":"An issue in the qst_vec_set component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57649.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57649.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57649","reference_id":"","reference_type":"","scores":[{"value":"0.00305","scoring_system":"epss","scoring_elements":"0.54185","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57649"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57649","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57649"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1206","reference_id":"1206","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:17:46Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1206"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337488","reference_id":"2337488","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337488"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57649"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ng5m-bstg-9ffg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/136938?format=json","vulnerability_id":"VCID-ngsb-1xut-53du","summary":"An issue in the sqlo_union_scope component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31629.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31629.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31629","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24205","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31629"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31629","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31629"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1139","reference_id":"1139","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T19:52:35Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1139"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209933","reference_id":"2209933","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209933"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31629"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ngsb-1xut-53du"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59043?format=json","vulnerability_id":"VCID-pd2u-88qa-6kfn","summary":"An issue in the box_deserialize_string component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57643.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57643.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57643","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57643"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57643","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57643"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1181","reference_id":"1181","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-16T16:02:40Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1181"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337548","reference_id":"2337548","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337548"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57643"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pd2u-88qa-6kfn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59046?format=json","vulnerability_id":"VCID-rmpf-a8rw-gydu","summary":"An issue in the dfe_inx_op_col_def_table component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57642.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57642.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57642","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57642"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57642","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57642"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1191","reference_id":"1191","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-17T17:39:45Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1191"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337485","reference_id":"2337485","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337485"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57642"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rmpf-a8rw-gydu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59364?format=json","vulnerability_id":"VCID-rzuc-dubg-skdj","summary":"An issue in the sqlo_expand_jts component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57660.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57660.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57660","reference_id":"","reference_type":"","scores":[{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21583","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57660"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57660","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57660"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1221","reference_id":"1221","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:51:49Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1221"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337520","reference_id":"2337520","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337520"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57660"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rzuc-dubg-skdj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137066?format=json","vulnerability_id":"VCID-t5g1-quvm-pyhu","summary":"An issue in the sqlc_make_policy_trig component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31622.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31622.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31622","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24205","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31622"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1135","reference_id":"1135","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T21:30:17Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1135"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209923","reference_id":"2209923","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209923"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31622"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t5g1-quvm-pyhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137027?format=json","vulnerability_id":"VCID-tf2t-g6ke-pbdg","summary":"An issue in the dfe_unit_col_loci component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31609.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31609.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31609","reference_id":"","reference_type":"","scores":[{"value":"0.00095","scoring_system":"epss","scoring_elements":"0.26334","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31609"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31609","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31609"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1126","reference_id":"1126","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T16:53:08Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1126"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209882","reference_id":"2209882","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209882"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31609"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tf2t-g6ke-pbdg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59316?format=json","vulnerability_id":"VCID-uh24-218h-wuh2","summary":"An issue in the itc_hash_compare component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57644.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57644.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57644","reference_id":"","reference_type":"","scores":[{"value":"0.00305","scoring_system":"epss","scoring_elements":"0.54185","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57644"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57644","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57644"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1193","reference_id":"1193","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:29:47Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1193"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337525","reference_id":"2337525","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337525"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57644"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uh24-218h-wuh2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/136876?format=json","vulnerability_id":"VCID-v442-ed5f-sufx","summary":"An issue in the sqlc_union_dt_wrap component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31618.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31618.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31618","reference_id":"","reference_type":"","scores":[{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22143","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31618"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31618"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1136","reference_id":"1136","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:59:54Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1136"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209918","reference_id":"2209918","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209918"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31618"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v442-ed5f-sufx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137167?format=json","vulnerability_id":"VCID-va1f-d2eg-k3cz","summary":"An issue in the _IO_default_xsputn component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31610.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31610.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31610","reference_id":"","reference_type":"","scores":[{"value":"0.00069","scoring_system":"epss","scoring_elements":"0.21354","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31610"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31610","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31610"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1118","reference_id":"1118","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T16:51:36Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1118"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209903","reference_id":"2209903","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209903"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31610"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-va1f-d2eg-k3cz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59172?format=json","vulnerability_id":"VCID-vmsz-sruf-jub7","summary":"An issue in the chash_array component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57635.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57635.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57635","reference_id":"","reference_type":"","scores":[{"value":"0.00378","scoring_system":"epss","scoring_elements":"0.59775","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57635"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57635","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57635"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1182","reference_id":"1182","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-14T15:37:40Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1182"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337507","reference_id":"2337507","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337507"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57635"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vmsz-sruf-jub7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210035?format=json","vulnerability_id":"VCID-wssy-gv24-u3dx","summary":"An issue in the cha_cmp function of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48947.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48947.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48947","reference_id":"","reference_type":"","scores":[{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25641","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48947"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48947","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48947"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062","reference_id":"1059062","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253137","reference_id":"2253137","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253137"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-48947"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wssy-gv24-u3dx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/136933?format=json","vulnerability_id":"VCID-wzdg-t4sc-gfbg","summary":"An issue in the dk_set_delete component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31617.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31617.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31617","reference_id":"","reference_type":"","scores":[{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22143","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31617"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1127","reference_id":"1127","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-24T17:00:45Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1127"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209917","reference_id":"2209917","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209917"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31617"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wzdg-t4sc-gfbg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137267?format=json","vulnerability_id":"VCID-xkt9-xa6j-mfgv","summary":"An issue in the psiginfo component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31625.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31625.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31625","reference_id":"","reference_type":"","scores":[{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22143","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31625"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31625","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31625"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1132","reference_id":"1132","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T20:18:14Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1132"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209927","reference_id":"2209927","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209927"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31625"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xkt9-xa6j-mfgv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/146467?format=json","vulnerability_id":"VCID-xmkj-hxbr-wyau","summary":"A stack overflow in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48945.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48945.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48945","reference_id":"","reference_type":"","scores":[{"value":"0.0011","scoring_system":"epss","scoring_elements":"0.29045","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48945"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062","reference_id":"1059062","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1172","reference_id":"1172","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-09T16:54:05Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1172"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253124","reference_id":"2253124","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253124"},{"reference_url":"https://usn.ubuntu.com/6879-1/","reference_id":"USN-6879-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6879-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-48945"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xmkj-hxbr-wyau"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210037?format=json","vulnerability_id":"VCID-xn81-716v-kqcv","summary":"An issue in the box_add function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48949.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48949.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48949","reference_id":"","reference_type":"","scores":[{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.20837","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48949"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062","reference_id":"1059062","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253134","reference_id":"2253134","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253134"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-48949"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xn81-716v-kqcv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/146257?format=json","vulnerability_id":"VCID-y85a-pgts-9uh6","summary":"An issue in the box_deserialize_reusing function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) after running a SELECT statement.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48952.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-48952.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48952","reference_id":"","reference_type":"","scores":[{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28668","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-48952"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48952","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48952"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062","reference_id":"1059062","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059062"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1175","reference_id":"1175","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:28:39Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1175"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253125","reference_id":"2253125","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253125"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-48952"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y85a-pgts-9uh6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59185?format=json","vulnerability_id":"VCID-z5uk-jxpr-ufch","summary":"An issue in the sqlg_hash_source component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57662.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57662.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57662","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29345","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57662"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57662","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57662"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1217","reference_id":"1217","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T17:02:47Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1217"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337537","reference_id":"2337537","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337537"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57662"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z5uk-jxpr-ufch"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/136872?format=json","vulnerability_id":"VCID-z8hz-p92w-xyb7","summary":"An issue in the mp_box_copy component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31623.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31623.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31623","reference_id":"","reference_type":"","scores":[{"value":"0.00095","scoring_system":"epss","scoring_elements":"0.26334","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31623"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1131","reference_id":"1131","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T21:06:48Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1131"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209925","reference_id":"2209925","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209925"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31623"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z8hz-p92w-xyb7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/136889?format=json","vulnerability_id":"VCID-zn9v-w1hu-4qe7","summary":"An issue in the __libc_longjmp component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31611.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31611.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31611","reference_id":"","reference_type":"","scores":[{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22143","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-31611"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31611","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31611"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467","reference_id":"1036467","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036467"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1119","reference_id":"1119","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T16:50:34Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1119"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209907","reference_id":"2209907","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2209907"},{"reference_url":"https://usn.ubuntu.com/6832-1/","reference_id":"USN-6832-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6832-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2023-31611"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zn9v-w1hu-4qe7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59374?format=json","vulnerability_id":"VCID-zuup-h821-nqd6","summary":"An issue in the sqlg_group_node component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57664.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57664.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57664","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.29345","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-57664"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57664","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57664"},{"reference_url":"https://github.com/openlink/virtuoso-opensource/issues/1211","reference_id":"1211","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-23T16:36:19Z/"}],"url":"https://github.com/openlink/virtuoso-opensource/issues/1211"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337489","reference_id":"2337489","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337489"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106841?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106842?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106840?format=json","purl":"pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie"}],"aliases":["CVE-2024-57664"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zuup-h821-nqd6"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.5.1%252Bdfsg1-0.1%3Fdistro=trixie"}