Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/python3.12@3.12.13-2?arch=el8_10
Typerpm
Namespaceredhat
Namepython3.12
Version3.12.13-2
Qualifiers
arch el8_10
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-1pr1-jkqa-43g6
vulnerability_id VCID-1pr1-jkqa-43g6
summary cpython: CPython: Logging Bypass in Legacy .pyc File Handling
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2297.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2297.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2297
reference_id
reference_type
scores
0
value 0.00016
scoring_system epss
scoring_elements 0.03392
published_at 2026-04-02T12:55:00Z
1
value 0.00016
scoring_system epss
scoring_elements 0.03405
published_at 2026-04-04T12:55:00Z
2
value 0.00018
scoring_system epss
scoring_elements 0.04728
published_at 2026-04-29T12:55:00Z
3
value 0.00018
scoring_system epss
scoring_elements 0.04498
published_at 2026-04-07T12:55:00Z
4
value 0.00018
scoring_system epss
scoring_elements 0.04534
published_at 2026-04-08T12:55:00Z
5
value 0.00018
scoring_system epss
scoring_elements 0.04549
published_at 2026-04-09T12:55:00Z
6
value 0.00018
scoring_system epss
scoring_elements 0.04539
published_at 2026-04-11T12:55:00Z
7
value 0.00018
scoring_system epss
scoring_elements 0.04525
published_at 2026-04-12T12:55:00Z
8
value 0.00018
scoring_system epss
scoring_elements 0.04509
published_at 2026-04-13T12:55:00Z
9
value 0.00018
scoring_system epss
scoring_elements 0.04481
published_at 2026-04-16T12:55:00Z
10
value 0.00018
scoring_system epss
scoring_elements 0.0449
published_at 2026-04-18T12:55:00Z
11
value 0.00018
scoring_system epss
scoring_elements 0.04627
published_at 2026-04-21T12:55:00Z
12
value 0.00018
scoring_system epss
scoring_elements 0.04669
published_at 2026-04-24T12:55:00Z
13
value 0.00018
scoring_system epss
scoring_elements 0.04703
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2297
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2297
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2297
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/python/cpython/issues/145506
reference_id 145506
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/
url https://github.com/python/cpython/issues/145506
5
reference_url https://github.com/python/cpython/pull/145507
reference_id 145507
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/
url https://github.com/python/cpython/pull/145507
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2444691
reference_id 2444691
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2444691
7
reference_url https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e
reference_id 482d6f8bdba9da3725d272e8bb4a2d25fb6a603e
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/
url https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e
8
reference_url https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e
reference_id a51b1b512de1d56b3714b65628a2eae2b07e535e
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/
url https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e
9
reference_url https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86
reference_id e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/
url https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86
10
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
11
reference_url https://access.redhat.com/errata/RHSA-2026:7443
reference_id RHSA-2026:7443
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7443
12
reference_url https://access.redhat.com/errata/RHSA-2026:7661
reference_id RHSA-2026:7661
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7661
13
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
14
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
fixed_packages
aliases CVE-2026-2297
risk_score 2.5
exploitability 0.5
weighted_severity 5.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1pr1-jkqa-43g6
1
url VCID-1uk5-6yqb-dyb5
vulnerability_id VCID-1uk5-6yqb-dyb5
summary cpython: Out-of-memory when loading Plist
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13837.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13837.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-13837
reference_id
reference_type
scores
0
value 0.00025
scoring_system epss
scoring_elements 0.07029
published_at 2026-04-29T12:55:00Z
1
value 0.00036
scoring_system epss
scoring_elements 0.10713
published_at 2026-04-04T12:55:00Z
2
value 0.00036
scoring_system epss
scoring_elements 0.10652
published_at 2026-04-02T12:55:00Z
3
value 0.00036
scoring_system epss
scoring_elements 0.10619
published_at 2026-04-26T12:55:00Z
4
value 0.00036
scoring_system epss
scoring_elements 0.10621
published_at 2026-04-24T12:55:00Z
5
value 0.00036
scoring_system epss
scoring_elements 0.10668
published_at 2026-04-21T12:55:00Z
6
value 0.00036
scoring_system epss
scoring_elements 0.10539
published_at 2026-04-18T12:55:00Z
7
value 0.00036
scoring_system epss
scoring_elements 0.10522
published_at 2026-04-16T12:55:00Z
8
value 0.00036
scoring_system epss
scoring_elements 0.10659
published_at 2026-04-13T12:55:00Z
9
value 0.00036
scoring_system epss
scoring_elements 0.10683
published_at 2026-04-12T12:55:00Z
10
value 0.00036
scoring_system epss
scoring_elements 0.10714
published_at 2026-04-11T12:55:00Z
11
value 0.00036
scoring_system epss
scoring_elements 0.10701
published_at 2026-04-09T12:55:00Z
12
value 0.00036
scoring_system epss
scoring_elements 0.10643
published_at 2026-04-08T12:55:00Z
13
value 0.00036
scoring_system epss
scoring_elements 0.1057
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-13837
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126782
reference_id 1126782
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126782
5
reference_url https://github.com/python/cpython/issues/119342
reference_id 119342
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/issues/119342
6
reference_url https://github.com/python/cpython/pull/119343
reference_id 119343
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/pull/119343
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2418084
reference_id 2418084
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2418084
8
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C/
reference_id 2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C/
9
reference_url https://github.com/python/cpython/commit/568342cfc8f002d9a15f30238f26b9d2e0e79036
reference_id 568342cfc8f002d9a15f30238f26b9d2e0e79036
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/568342cfc8f002d9a15f30238f26b9d2e0e79036
10
reference_url https://github.com/python/cpython/commit/5a8b19677d818fb41ee55f310233772e15aa1a2b
reference_id 5a8b19677d818fb41ee55f310233772e15aa1a2b
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/5a8b19677d818fb41ee55f310233772e15aa1a2b
11
reference_url https://github.com/python/cpython/commit/694922cf40aa3a28f898b5f5ee08b71b4922df70
reference_id 694922cf40aa3a28f898b5f5ee08b71b4922df70
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/694922cf40aa3a28f898b5f5ee08b71b4922df70
12
reference_url https://github.com/python/cpython/commit/71fa8eb8233b37f16c88b6e3e583b461b205d1ba
reference_id 71fa8eb8233b37f16c88b6e3e583b461b205d1ba
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/71fa8eb8233b37f16c88b6e3e583b461b205d1ba
13
reference_url https://github.com/python/cpython/commit/b64441e4852383645af5b435411a6f849dd1b4cb
reference_id b64441e4852383645af5b435411a6f849dd1b4cb
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/b64441e4852383645af5b435411a6f849dd1b4cb
14
reference_url https://github.com/python/cpython/commit/cefee7d118a26ef6cd43db59bb9d98ca9a331111
reference_id cefee7d118a26ef6cd43db59bb9d98ca9a331111
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/cefee7d118a26ef6cd43db59bb9d98ca9a331111
15
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
16
reference_url https://access.redhat.com/errata/RHSA-2026:7443
reference_id RHSA-2026:7443
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7443
17
reference_url https://access.redhat.com/errata/RHSA-2026:7661
reference_id RHSA-2026:7661
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7661
18
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
19
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
20
reference_url https://usn.ubuntu.com/8018-1/
reference_id USN-8018-1
reference_type
scores
url https://usn.ubuntu.com/8018-1/
fixed_packages
aliases CVE-2025-13837
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1uk5-6yqb-dyb5
2
url VCID-77y6-jskt-qucb
vulnerability_id VCID-77y6-jskt-qucb
summary libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59375.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59375.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-59375
reference_id
reference_type
scores
0
value 0.0004
scoring_system epss
scoring_elements 0.12206
published_at 2026-04-21T12:55:00Z
1
value 0.0004
scoring_system epss
scoring_elements 0.12038
published_at 2026-04-29T12:55:00Z
2
value 0.00049
scoring_system epss
scoring_elements 0.15188
published_at 2026-04-26T12:55:00Z
3
value 0.00049
scoring_system epss
scoring_elements 0.15184
published_at 2026-04-24T12:55:00Z
4
value 0.00051
scoring_system epss
scoring_elements 0.15663
published_at 2026-04-07T12:55:00Z
5
value 0.00051
scoring_system epss
scoring_elements 0.15811
published_at 2026-04-02T12:55:00Z
6
value 0.00051
scoring_system epss
scoring_elements 0.15808
published_at 2026-04-09T12:55:00Z
7
value 0.00051
scoring_system epss
scoring_elements 0.15748
published_at 2026-04-08T12:55:00Z
8
value 0.00051
scoring_system epss
scoring_elements 0.15871
published_at 2026-04-04T12:55:00Z
9
value 0.00058
scoring_system epss
scoring_elements 0.18108
published_at 2026-04-16T12:55:00Z
10
value 0.00058
scoring_system epss
scoring_elements 0.18262
published_at 2026-04-11T12:55:00Z
11
value 0.00058
scoring_system epss
scoring_elements 0.18121
published_at 2026-04-18T12:55:00Z
12
value 0.00058
scoring_system epss
scoring_elements 0.18164
published_at 2026-04-13T12:55:00Z
13
value 0.00058
scoring_system epss
scoring_elements 0.18215
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-59375
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59375
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59375
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/libexpat/libexpat/issues/1018
reference_id 1018
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H/RL:T/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-15T20:22:58Z/
url https://github.com/libexpat/libexpat/issues/1018
5
reference_url https://github.com/libexpat/libexpat/pull/1034
reference_id 1034
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H/RL:T/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-15T20:22:58Z/
url https://github.com/libexpat/libexpat/pull/1034
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1115298
reference_id 1115298
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1115298
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2395108
reference_id 2395108
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2395108
8
reference_url https://issues.oss-fuzz.com/issues/439133977
reference_id 439133977
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H/RL:T/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-15T20:22:58Z/
url https://issues.oss-fuzz.com/issues/439133977
9
reference_url https://github.com/libexpat/libexpat/blob/R_2_7_2/expat/Changes
reference_id Changes
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H/RL:T/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-15T20:22:58Z/
url https://github.com/libexpat/libexpat/blob/R_2_7_2/expat/Changes
10
reference_url https://github.com/libexpat/libexpat/blob/676a4c531ec768732fac215da9730b5f50fbd2bf/expat/Changes#L45-L74
reference_id Changes#L45-L74
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H/RL:T/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-15T20:22:58Z/
url https://github.com/libexpat/libexpat/blob/676a4c531ec768732fac215da9730b5f50fbd2bf/expat/Changes#L45-L74
11
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2026-20
reference_id mfsa2026-20
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2026-20
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2026-22
reference_id mfsa2026-22
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2026-22
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2026-23
reference_id mfsa2026-23
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2026-23
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2026-24
reference_id mfsa2026-24
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2026-24
15
reference_url https://access.redhat.com/errata/RHSA-2025:19020
reference_id RHSA-2025:19020
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:19020
16
reference_url https://access.redhat.com/errata/RHSA-2025:19403
reference_id RHSA-2025:19403
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:19403
17
reference_url https://access.redhat.com/errata/RHSA-2025:21030
reference_id RHSA-2025:21030
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:21030
18
reference_url https://access.redhat.com/errata/RHSA-2025:21773
reference_id RHSA-2025:21773
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:21773
19
reference_url https://access.redhat.com/errata/RHSA-2025:21776
reference_id RHSA-2025:21776
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:21776
20
reference_url https://access.redhat.com/errata/RHSA-2025:21974
reference_id RHSA-2025:21974
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:21974
21
reference_url https://access.redhat.com/errata/RHSA-2025:22033
reference_id RHSA-2025:22033
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22033
22
reference_url https://access.redhat.com/errata/RHSA-2025:22034
reference_id RHSA-2025:22034
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22034
23
reference_url https://access.redhat.com/errata/RHSA-2025:22035
reference_id RHSA-2025:22035
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22035
24
reference_url https://access.redhat.com/errata/RHSA-2025:22175
reference_id RHSA-2025:22175
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22175
25
reference_url https://access.redhat.com/errata/RHSA-2025:22607
reference_id RHSA-2025:22607
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22607
26
reference_url https://access.redhat.com/errata/RHSA-2025:22618
reference_id RHSA-2025:22618
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22618
27
reference_url https://access.redhat.com/errata/RHSA-2025:22785
reference_id RHSA-2025:22785
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22785
28
reference_url https://access.redhat.com/errata/RHSA-2025:22842
reference_id RHSA-2025:22842
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22842
29
reference_url https://access.redhat.com/errata/RHSA-2025:22871
reference_id RHSA-2025:22871
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22871
30
reference_url https://access.redhat.com/errata/RHSA-2025:22935
reference_id RHSA-2025:22935
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22935
31
reference_url https://access.redhat.com/errata/RHSA-2025:23078
reference_id RHSA-2025:23078
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23078
32
reference_url https://access.redhat.com/errata/RHSA-2025:23079
reference_id RHSA-2025:23079
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23079
33
reference_url https://access.redhat.com/errata/RHSA-2025:23080
reference_id RHSA-2025:23080
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23080
34
reference_url https://access.redhat.com/errata/RHSA-2025:23202
reference_id RHSA-2025:23202
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23202
35
reference_url https://access.redhat.com/errata/RHSA-2025:23204
reference_id RHSA-2025:23204
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23204
36
reference_url https://access.redhat.com/errata/RHSA-2025:23205
reference_id RHSA-2025:23205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23205
37
reference_url https://access.redhat.com/errata/RHSA-2025:23209
reference_id RHSA-2025:23209
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23209
38
reference_url https://access.redhat.com/errata/RHSA-2025:23227
reference_id RHSA-2025:23227
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23227
39
reference_url https://access.redhat.com/errata/RHSA-2025:23248
reference_id RHSA-2025:23248
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23248
40
reference_url https://access.redhat.com/errata/RHSA-2025:23449
reference_id RHSA-2025:23449
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23449
41
reference_url https://access.redhat.com/errata/RHSA-2025:23550
reference_id RHSA-2025:23550
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23550
42
reference_url https://access.redhat.com/errata/RHSA-2026:0001
reference_id RHSA-2026:0001
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0001
43
reference_url https://access.redhat.com/errata/RHSA-2026:0076
reference_id RHSA-2026:0076
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0076
44
reference_url https://access.redhat.com/errata/RHSA-2026:0077
reference_id RHSA-2026:0077
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0077
45
reference_url https://access.redhat.com/errata/RHSA-2026:0078
reference_id RHSA-2026:0078
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0078
46
reference_url https://access.redhat.com/errata/RHSA-2026:0326
reference_id RHSA-2026:0326
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0326
47
reference_url https://access.redhat.com/errata/RHSA-2026:0332
reference_id RHSA-2026:0332
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0332
48
reference_url https://access.redhat.com/errata/RHSA-2026:0414
reference_id RHSA-2026:0414
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0414
49
reference_url https://access.redhat.com/errata/RHSA-2026:0420
reference_id RHSA-2026:0420
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0420
50
reference_url https://access.redhat.com/errata/RHSA-2026:0518
reference_id RHSA-2026:0518
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0518
51
reference_url https://access.redhat.com/errata/RHSA-2026:0674
reference_id RHSA-2026:0674
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0674
52
reference_url https://access.redhat.com/errata/RHSA-2026:0677
reference_id RHSA-2026:0677
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0677
53
reference_url https://access.redhat.com/errata/RHSA-2026:0702
reference_id RHSA-2026:0702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0702
54
reference_url https://access.redhat.com/errata/RHSA-2026:0934
reference_id RHSA-2026:0934
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0934
55
reference_url https://access.redhat.com/errata/RHSA-2026:0996
reference_id RHSA-2026:0996
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0996
56
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
57
reference_url https://access.redhat.com/errata/RHSA-2026:1541
reference_id RHSA-2026:1541
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1541
58
reference_url https://access.redhat.com/errata/RHSA-2026:1652
reference_id RHSA-2026:1652
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1652
59
reference_url https://access.redhat.com/errata/RHSA-2026:3407
reference_id RHSA-2026:3407
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3407
60
reference_url https://access.redhat.com/errata/RHSA-2026:3461
reference_id RHSA-2026:3461
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3461
61
reference_url https://access.redhat.com/errata/RHSA-2026:3462
reference_id RHSA-2026:3462
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3462
62
reference_url https://access.redhat.com/errata/RHSA-2026:5396
reference_id RHSA-2026:5396
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5396
63
reference_url https://usn.ubuntu.com/8022-1/
reference_id USN-8022-1
reference_type
scores
url https://usn.ubuntu.com/8022-1/
fixed_packages
aliases CVE-2025-59375
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-77y6-jskt-qucb
3
url VCID-94n7-6q4s-3udv
vulnerability_id VCID-94n7-6q4s-3udv
summary cpython: Header injection via newlines in data URL mediatype in Python
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15282.json
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15282.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-15282
reference_id
reference_type
scores
0
value 0.00044
scoring_system epss
scoring_elements 0.13681
published_at 2026-04-02T12:55:00Z
1
value 0.00044
scoring_system epss
scoring_elements 0.13418
published_at 2026-04-29T12:55:00Z
2
value 0.00044
scoring_system epss
scoring_elements 0.13742
published_at 2026-04-04T12:55:00Z
3
value 0.00044
scoring_system epss
scoring_elements 0.13544
published_at 2026-04-07T12:55:00Z
4
value 0.00044
scoring_system epss
scoring_elements 0.13624
published_at 2026-04-08T12:55:00Z
5
value 0.00044
scoring_system epss
scoring_elements 0.13676
published_at 2026-04-09T12:55:00Z
6
value 0.00044
scoring_system epss
scoring_elements 0.13646
published_at 2026-04-11T12:55:00Z
7
value 0.00044
scoring_system epss
scoring_elements 0.13609
published_at 2026-04-12T12:55:00Z
8
value 0.00044
scoring_system epss
scoring_elements 0.13561
published_at 2026-04-13T12:55:00Z
9
value 0.00044
scoring_system epss
scoring_elements 0.13476
published_at 2026-04-16T12:55:00Z
10
value 0.00044
scoring_system epss
scoring_elements 0.13472
published_at 2026-04-18T12:55:00Z
11
value 0.00044
scoring_system epss
scoring_elements 0.13543
published_at 2026-04-21T12:55:00Z
12
value 0.00044
scoring_system epss
scoring_elements 0.13555
published_at 2026-04-24T12:55:00Z
13
value 0.00044
scoring_system epss
scoring_elements 0.13527
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-15282
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15282
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15282
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/python/cpython/commit/05356b1cc153108aaf27f3b72ce438af4aa218c0
reference_id 05356b1cc153108aaf27f3b72ce438af4aa218c0
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/
url https://github.com/python/cpython/commit/05356b1cc153108aaf27f3b72ce438af4aa218c0
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126779
reference_id 1126779
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126779
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126780
reference_id 1126780
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126780
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126781
reference_id 1126781
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126781
8
reference_url https://github.com/python/cpython/issues/143925
reference_id 143925
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/
url https://github.com/python/cpython/issues/143925
9
reference_url https://github.com/python/cpython/pull/143926
reference_id 143926
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/
url https://github.com/python/cpython/pull/143926
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431366
reference_id 2431366
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431366
11
reference_url https://github.com/python/cpython/commit/34d76b00dabde81a793bd06dd8ecb057838c4b38
reference_id 34d76b00dabde81a793bd06dd8ecb057838c4b38
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/
url https://github.com/python/cpython/commit/34d76b00dabde81a793bd06dd8ecb057838c4b38
12
reference_url https://github.com/python/cpython/commit/3f396ca9d7bbe2a50ea6b8c9b27c0082884d9f80
reference_id 3f396ca9d7bbe2a50ea6b8c9b27c0082884d9f80
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/
url https://github.com/python/cpython/commit/3f396ca9d7bbe2a50ea6b8c9b27c0082884d9f80
13
reference_url https://github.com/python/cpython/commit/4ed11d3cd288e6b90196a15c5a825a45d318fe47
reference_id 4ed11d3cd288e6b90196a15c5a825a45d318fe47
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/
url https://github.com/python/cpython/commit/4ed11d3cd288e6b90196a15c5a825a45d318fe47
14
reference_url https://github.com/python/cpython/commit/a35ca3be5842505dab74dc0b90b89cde0405017a
reference_id a35ca3be5842505dab74dc0b90b89cde0405017a
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/
url https://github.com/python/cpython/commit/a35ca3be5842505dab74dc0b90b89cde0405017a
15
reference_url https://github.com/python/cpython/commit/f25509e78e8be6ea73c811ac2b8c928c28841b9f
reference_id f25509e78e8be6ea73c811ac2b8c928c28841b9f
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/
url https://github.com/python/cpython/commit/f25509e78e8be6ea73c811ac2b8c928c28841b9f
16
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
17
reference_url https://access.redhat.com/errata/RHSA-2026:7443
reference_id RHSA-2026:7443
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7443
18
reference_url https://access.redhat.com/errata/RHSA-2026:7661
reference_id RHSA-2026:7661
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7661
19
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
20
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
21
reference_url https://usn.ubuntu.com/8018-1/
reference_id USN-8018-1
reference_type
scores
url https://usn.ubuntu.com/8018-1/
22
reference_url https://usn.ubuntu.com/8018-3/
reference_id USN-8018-3
reference_type
scores
url https://usn.ubuntu.com/8018-3/
23
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/X66HL7SISGJT33J53OHXMZT4DFLMHVKF/
reference_id X66HL7SISGJT33J53OHXMZT4DFLMHVKF
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/X66HL7SISGJT33J53OHXMZT4DFLMHVKF/
fixed_packages
aliases CVE-2025-15282
risk_score 2.7
exploitability 0.5
weighted_severity 5.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-94n7-6q4s-3udv
4
url VCID-9vcx-2fts-gkfw
vulnerability_id VCID-9vcx-2fts-gkfw
summary cpython: Stack overflow parsing XML with deeply nested DTD content models
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4224.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4224.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-4224
reference_id
reference_type
scores
0
value 0.00019
scoring_system epss
scoring_elements 0.0479
published_at 2026-04-02T12:55:00Z
1
value 0.00019
scoring_system epss
scoring_elements 0.04831
published_at 2026-04-07T12:55:00Z
2
value 0.00019
scoring_system epss
scoring_elements 0.04814
published_at 2026-04-04T12:55:00Z
3
value 0.00019
scoring_system epss
scoring_elements 0.04869
published_at 2026-04-08T12:55:00Z
4
value 0.0003
scoring_system epss
scoring_elements 0.08589
published_at 2026-04-13T12:55:00Z
5
value 0.0003
scoring_system epss
scoring_elements 0.08479
published_at 2026-04-16T12:55:00Z
6
value 0.0003
scoring_system epss
scoring_elements 0.08627
published_at 2026-04-09T12:55:00Z
7
value 0.0003
scoring_system epss
scoring_elements 0.08625
published_at 2026-04-11T12:55:00Z
8
value 0.0003
scoring_system epss
scoring_elements 0.08602
published_at 2026-04-12T12:55:00Z
9
value 0.00035
scoring_system epss
scoring_elements 0.10059
published_at 2026-04-18T12:55:00Z
10
value 0.00035
scoring_system epss
scoring_elements 0.10149
published_at 2026-04-26T12:55:00Z
11
value 0.00035
scoring_system epss
scoring_elements 0.10092
published_at 2026-04-29T12:55:00Z
12
value 0.00035
scoring_system epss
scoring_elements 0.10171
published_at 2026-04-24T12:55:00Z
13
value 0.00035
scoring_system epss
scoring_elements 0.10191
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-4224
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4224
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4224
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/python/cpython/issues/145986
reference_id 145986
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/
url https://github.com/python/cpython/issues/145986
5
reference_url https://github.com/python/cpython/pull/145987
reference_id 145987
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/
url https://github.com/python/cpython/pull/145987
6
reference_url https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a
reference_id 196edfb06a7458377d4d0f4b3cd41724c1f3bd4a
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/
url https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2448181
reference_id 2448181
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2448181
8
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/
reference_id 5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/
9
reference_url https://github.com/python/cpython/commit/642865ddf4b232da1f3b1f7abcfa3254c4bfe785
reference_id 642865ddf4b232da1f3b1f7abcfa3254c4bfe785
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/
url https://github.com/python/cpython/commit/642865ddf4b232da1f3b1f7abcfa3254c4bfe785
10
reference_url https://github.com/python/cpython/commit/af856a7177326ac25d9f66cc6dd28b554d914fee
reference_id af856a7177326ac25d9f66cc6dd28b554d914fee
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/
url https://github.com/python/cpython/commit/af856a7177326ac25d9f66cc6dd28b554d914fee
11
reference_url https://github.com/python/cpython/commit/e0a8a6da90597a924b300debe045cdb4628ee1f3
reference_id e0a8a6da90597a924b300debe045cdb4628ee1f3
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/
url https://github.com/python/cpython/commit/e0a8a6da90597a924b300debe045cdb4628ee1f3
12
reference_url https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf532768
reference_id eb0e8be3a7e11b87d198a2c3af1ed0eccf532768
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/
url https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf532768
13
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
14
reference_url https://access.redhat.com/errata/RHSA-2026:7443
reference_id RHSA-2026:7443
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7443
15
reference_url https://access.redhat.com/errata/RHSA-2026:7661
reference_id RHSA-2026:7661
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7661
16
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
17
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
fixed_packages
aliases CVE-2026-4224
risk_score 2.7
exploitability 0.5
weighted_severity 5.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9vcx-2fts-gkfw
5
url VCID-a2st-585f-uucu
vulnerability_id VCID-a2st-585f-uucu
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1502.json
reference_id
reference_type
scores
0
value 4.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1502.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-1502
reference_id
reference_type
scores
0
value 0.00042
scoring_system epss
scoring_elements 0.12595
published_at 2026-04-13T12:55:00Z
1
value 0.00042
scoring_system epss
scoring_elements 0.12681
published_at 2026-04-11T12:55:00Z
2
value 0.00042
scoring_system epss
scoring_elements 0.1264
published_at 2026-04-12T12:55:00Z
3
value 0.00055
scoring_system epss
scoring_elements 0.17068
published_at 2026-04-16T12:55:00Z
4
value 0.00055
scoring_system epss
scoring_elements 0.17108
published_at 2026-04-21T12:55:00Z
5
value 0.00055
scoring_system epss
scoring_elements 0.17073
published_at 2026-04-18T12:55:00Z
6
value 0.00061
scoring_system epss
scoring_elements 0.18841
published_at 2026-04-24T12:55:00Z
7
value 0.00061
scoring_system epss
scoring_elements 0.18776
published_at 2026-04-29T12:55:00Z
8
value 0.00061
scoring_system epss
scoring_elements 0.18821
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-1502
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1502
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1502
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/python/cpython/commit/05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69
reference_id 05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/
url https://github.com/python/cpython/commit/05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69
5
reference_url https://github.com/python/cpython/issues/146211
reference_id 146211
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/
url https://github.com/python/cpython/issues/146211
6
reference_url https://github.com/python/cpython/pull/146212
reference_id 146212
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/
url https://github.com/python/cpython/pull/146212
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2457409
reference_id 2457409
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2457409
8
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3/
reference_id 2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3/
9
reference_url https://github.com/python/cpython/commit/b1cf9016335cb637c5a425032e8274a224f4b2ed
reference_id b1cf9016335cb637c5a425032e8274a224f4b2ed
reference_type
scores
0
value 5.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/
url https://github.com/python/cpython/commit/b1cf9016335cb637c5a425032e8274a224f4b2ed
10
reference_url https://access.redhat.com/errata/RHSA-2026:10117
reference_id RHSA-2026:10117
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10117
11
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
12
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
13
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
14
reference_url https://access.redhat.com/errata/RHSA-2026:9228
reference_id RHSA-2026:9228
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9228
fixed_packages
aliases CVE-2026-1502
risk_score 2.5
exploitability 0.5
weighted_severity 5.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a2st-585f-uucu
6
url VCID-fcsb-dn49-47gy
vulnerability_id VCID-fcsb-dn49-47gy
summary python: Quadratic complexity in os.path.expandvars() with user-controlled template
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6075.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6075.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-6075
reference_id
reference_type
scores
0
value 0.00021
scoring_system epss
scoring_elements 0.05661
published_at 2026-04-02T12:55:00Z
1
value 0.00021
scoring_system epss
scoring_elements 0.05701
published_at 2026-04-04T12:55:00Z
2
value 0.00021
scoring_system epss
scoring_elements 0.0576
published_at 2026-04-09T12:55:00Z
3
value 0.00021
scoring_system epss
scoring_elements 0.05734
published_at 2026-04-08T12:55:00Z
4
value 0.00021
scoring_system epss
scoring_elements 0.05694
published_at 2026-04-07T12:55:00Z
5
value 0.0003
scoring_system epss
scoring_elements 0.08429
published_at 2026-04-16T12:55:00Z
6
value 0.0003
scoring_system epss
scoring_elements 0.08536
published_at 2026-04-13T12:55:00Z
7
value 0.0003
scoring_system epss
scoring_elements 0.08553
published_at 2026-04-12T12:55:00Z
8
value 0.0003
scoring_system epss
scoring_elements 0.08574
published_at 2026-04-21T12:55:00Z
9
value 0.0003
scoring_system epss
scoring_elements 0.08541
published_at 2026-04-26T12:55:00Z
10
value 0.0003
scoring_system epss
scoring_elements 0.08587
published_at 2026-04-24T12:55:00Z
11
value 0.0003
scoring_system epss
scoring_elements 0.08414
published_at 2026-04-18T12:55:00Z
12
value 0.00031
scoring_system epss
scoring_elements 0.08938
published_at 2026-04-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-6075
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6075
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6075
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126777
reference_id 1126777
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126777
5
reference_url https://github.com/python/cpython/issues/136065
reference_id 136065
reference_type
scores
0
value 1.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/
url https://github.com/python/cpython/issues/136065
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2408891
reference_id 2408891
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2408891
7
reference_url https://github.com/python/cpython/commit/2e6150adccaaf5bd95d4c19dfd04a36e0b325d8c
reference_id 2e6150adccaaf5bd95d4c19dfd04a36e0b325d8c
reference_type
scores
0
value 1.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/
url https://github.com/python/cpython/commit/2e6150adccaaf5bd95d4c19dfd04a36e0b325d8c
8
reference_url https://github.com/python/cpython/commit/5dceb93486176e6b4a6d9754491005113eb23427
reference_id 5dceb93486176e6b4a6d9754491005113eb23427
reference_type
scores
0
value 1.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/
url https://github.com/python/cpython/commit/5dceb93486176e6b4a6d9754491005113eb23427
9
reference_url https://github.com/python/cpython/commit/631ba3407e3348ccd56ce5160c4fb2c5dc5f4d84
reference_id 631ba3407e3348ccd56ce5160c4fb2c5dc5f4d84
reference_type
scores
0
value 1.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/
url https://github.com/python/cpython/commit/631ba3407e3348ccd56ce5160c4fb2c5dc5f4d84
10
reference_url https://github.com/python/cpython/commit/892747b4cf0f95ba8beb51c0d0658bfaa381ebca
reference_id 892747b4cf0f95ba8beb51c0d0658bfaa381ebca
reference_type
scores
0
value 1.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/
url https://github.com/python/cpython/commit/892747b4cf0f95ba8beb51c0d0658bfaa381ebca
11
reference_url https://github.com/python/cpython/commit/9ab89c026aa9611c4b0b67c288b8303a480fe742
reference_id 9ab89c026aa9611c4b0b67c288b8303a480fe742
reference_type
scores
0
value 1.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/
url https://github.com/python/cpython/commit/9ab89c026aa9611c4b0b67c288b8303a480fe742
12
reference_url https://github.com/python/cpython/commit/c8a5f3435c342964e0a432cc9fb448b7dbecd1ba
reference_id c8a5f3435c342964e0a432cc9fb448b7dbecd1ba
reference_type
scores
0
value 1.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/
url https://github.com/python/cpython/commit/c8a5f3435c342964e0a432cc9fb448b7dbecd1ba
13
reference_url https://github.com/python/cpython/commit/f029e8db626ddc6e3a3beea4eff511a71aaceb5c
reference_id f029e8db626ddc6e3a3beea4eff511a71aaceb5c
reference_type
scores
0
value 1.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/
url https://github.com/python/cpython/commit/f029e8db626ddc6e3a3beea4eff511a71aaceb5c
14
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/IUP5QJ6D4KK6ULHOMPC7DPNKRYQTQNLA/
reference_id IUP5QJ6D4KK6ULHOMPC7DPNKRYQTQNLA
reference_type
scores
0
value 1.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/IUP5QJ6D4KK6ULHOMPC7DPNKRYQTQNLA/
15
reference_url https://access.redhat.com/errata/RHSA-2025:23342
reference_id RHSA-2025:23342
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23342
16
reference_url https://access.redhat.com/errata/RHSA-2025:23530
reference_id RHSA-2025:23530
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23530
17
reference_url https://access.redhat.com/errata/RHSA-2026:0414
reference_id RHSA-2026:0414
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0414
18
reference_url https://access.redhat.com/errata/RHSA-2026:0685
reference_id RHSA-2026:0685
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0685
19
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
20
reference_url https://access.redhat.com/errata/RHSA-2026:1652
reference_id RHSA-2026:1652
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1652
21
reference_url https://access.redhat.com/errata/RHSA-2026:7443
reference_id RHSA-2026:7443
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7443
22
reference_url https://access.redhat.com/errata/RHSA-2026:7661
reference_id RHSA-2026:7661
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7661
23
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
24
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
25
reference_url https://usn.ubuntu.com/7886-1/
reference_id USN-7886-1
reference_type
scores
url https://usn.ubuntu.com/7886-1/
26
reference_url https://usn.ubuntu.com/7886-2/
reference_id USN-7886-2
reference_type
scores
url https://usn.ubuntu.com/7886-2/
fixed_packages
aliases CVE-2025-6075
risk_score 1.8
exploitability 0.5
weighted_severity 3.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fcsb-dn49-47gy
7
url VCID-gqzt-rh1w-jkfu
vulnerability_id VCID-gqzt-rh1w-jkfu
summary cpython: Incomplete control character validation in http.cookies
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3644.json
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3644.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-3644
reference_id
reference_type
scores
0
value 0.00043
scoring_system epss
scoring_elements 0.12837
published_at 2026-04-29T12:55:00Z
1
value 0.00043
scoring_system epss
scoring_elements 0.12957
published_at 2026-04-21T12:55:00Z
2
value 0.00043
scoring_system epss
scoring_elements 0.12975
published_at 2026-04-24T12:55:00Z
3
value 0.00043
scoring_system epss
scoring_elements 0.12942
published_at 2026-04-26T12:55:00Z
4
value 0.00113
scoring_system epss
scoring_elements 0.29978
published_at 2026-04-04T12:55:00Z
5
value 0.00113
scoring_system epss
scoring_elements 0.29929
published_at 2026-04-02T12:55:00Z
6
value 0.00113
scoring_system epss
scoring_elements 0.29852
published_at 2026-04-08T12:55:00Z
7
value 0.00113
scoring_system epss
scoring_elements 0.29791
published_at 2026-04-07T12:55:00Z
8
value 0.00113
scoring_system epss
scoring_elements 0.2982
published_at 2026-04-16T12:55:00Z
9
value 0.00113
scoring_system epss
scoring_elements 0.29801
published_at 2026-04-13T12:55:00Z
10
value 0.00113
scoring_system epss
scoring_elements 0.29851
published_at 2026-04-12T12:55:00Z
11
value 0.00113
scoring_system epss
scoring_elements 0.29897
published_at 2026-04-11T12:55:00Z
12
value 0.00113
scoring_system epss
scoring_elements 0.29888
published_at 2026-04-09T12:55:00Z
13
value 0.0013
scoring_system epss
scoring_elements 0.32461
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-3644
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3644
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3644
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/python/cpython/issues/145599
reference_id 145599
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:25:27Z/
url https://github.com/python/cpython/issues/145599
5
reference_url https://github.com/python/cpython/pull/145600
reference_id 145600
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:25:27Z/
url https://github.com/python/cpython/pull/145600
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2448168
reference_id 2448168
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2448168
7
reference_url https://github.com/python/cpython/commit/57e88c1cf95e1481b94ae57abe1010469d47a6b4
reference_id 57e88c1cf95e1481b94ae57abe1010469d47a6b4
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:25:27Z/
url https://github.com/python/cpython/commit/57e88c1cf95e1481b94ae57abe1010469d47a6b4
8
reference_url https://github.com/python/cpython/commit/62ceb396fcbe69da1ded3702de586f4072b590dd
reference_id 62ceb396fcbe69da1ded3702de586f4072b590dd
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:25:27Z/
url https://github.com/python/cpython/commit/62ceb396fcbe69da1ded3702de586f4072b590dd
9
reference_url https://github.com/python/cpython/commit/d16ecc6c3626f0e2cc8f08c309c83934e8a979dd
reference_id d16ecc6c3626f0e2cc8f08c309c83934e8a979dd
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:25:27Z/
url https://github.com/python/cpython/commit/d16ecc6c3626f0e2cc8f08c309c83934e8a979dd
10
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/
reference_id H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:25:27Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/
11
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
12
reference_url https://access.redhat.com/errata/RHSA-2026:7443
reference_id RHSA-2026:7443
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7443
13
reference_url https://access.redhat.com/errata/RHSA-2026:7661
reference_id RHSA-2026:7661
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7661
14
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
15
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
fixed_packages
aliases CVE-2026-3644
risk_score 2.7
exploitability 0.5
weighted_severity 5.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gqzt-rh1w-jkfu
8
url VCID-rcu5-gpmt-r7cb
vulnerability_id VCID-rcu5-gpmt-r7cb
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6100.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6100.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-6100
reference_id
reference_type
scores
0
value 0.00066
scoring_system epss
scoring_elements 0.20321
published_at 2026-04-16T12:55:00Z
1
value 0.00066
scoring_system epss
scoring_elements 0.20323
published_at 2026-04-18T12:55:00Z
2
value 0.00151
scoring_system epss
scoring_elements 0.35613
published_at 2026-04-21T12:55:00Z
3
value 0.00151
scoring_system epss
scoring_elements 0.35354
published_at 2026-04-26T12:55:00Z
4
value 0.00151
scoring_system epss
scoring_elements 0.35274
published_at 2026-04-29T12:55:00Z
5
value 0.00151
scoring_system epss
scoring_elements 0.35375
published_at 2026-04-24T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-6100
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6100
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6100
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/python/cpython/issues/148395
reference_id 148395
reference_type
scores
0
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/
url https://github.com/python/cpython/issues/148395
5
reference_url https://github.com/python/cpython/pull/148396
reference_id 148396
reference_type
scores
0
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/
url https://github.com/python/cpython/pull/148396
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2457932
reference_id 2457932
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2457932
7
reference_url https://github.com/python/cpython/commit/47128e64f98c3a20271138a98c2922bea2a3ee0e
reference_id 47128e64f98c3a20271138a98c2922bea2a3ee0e
reference_type
scores
0
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/
url https://github.com/python/cpython/commit/47128e64f98c3a20271138a98c2922bea2a3ee0e
8
reference_url https://github.com/python/cpython/commit/6a5f79c8d7bbf22b083b240910c7a8781a59437d
reference_id 6a5f79c8d7bbf22b083b240910c7a8781a59437d
reference_type
scores
0
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/
url https://github.com/python/cpython/commit/6a5f79c8d7bbf22b083b240910c7a8781a59437d
9
reference_url https://github.com/python/cpython/commit/8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2
reference_id 8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2
reference_type
scores
0
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/
url https://github.com/python/cpython/commit/8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2
10
reference_url https://github.com/python/cpython/commit/c3cf71c3366fe49acb776a639405c0eea6169c20
reference_id c3cf71c3366fe49acb776a639405c0eea6169c20
reference_type
scores
0
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/
url https://github.com/python/cpython/commit/c3cf71c3366fe49acb776a639405c0eea6169c20
11
reference_url https://github.com/python/cpython/commit/e20c6c9667c99ecaab96e1a2b3767082841ffc8b
reference_id e20c6c9667c99ecaab96e1a2b3767082841ffc8b
reference_type
scores
0
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/
url https://github.com/python/cpython/commit/e20c6c9667c99ecaab96e1a2b3767082841ffc8b
12
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3/
reference_id HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3
reference_type
scores
0
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3/
13
reference_url https://access.redhat.com/errata/RHSA-2026:10117
reference_id RHSA-2026:10117
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10117
14
reference_url https://access.redhat.com/errata/RHSA-2026:10140
reference_id RHSA-2026:10140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10140
15
reference_url https://access.redhat.com/errata/RHSA-2026:10141
reference_id RHSA-2026:10141
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10141
16
reference_url https://access.redhat.com/errata/RHSA-2026:10711
reference_id RHSA-2026:10711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10711
17
reference_url https://access.redhat.com/errata/RHSA-2026:10745
reference_id RHSA-2026:10745
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10745
18
reference_url https://access.redhat.com/errata/RHSA-2026:10774
reference_id RHSA-2026:10774
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10774
19
reference_url https://access.redhat.com/errata/RHSA-2026:10949
reference_id RHSA-2026:10949
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10949
20
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
21
reference_url https://access.redhat.com/errata/RHSA-2026:11062
reference_id RHSA-2026:11062
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11062
22
reference_url https://access.redhat.com/errata/RHSA-2026:11077
reference_id RHSA-2026:11077
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11077
23
reference_url https://access.redhat.com/errata/RHSA-2026:11768
reference_id RHSA-2026:11768
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11768
24
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
25
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
26
reference_url https://access.redhat.com/errata/RHSA-2026:9228
reference_id RHSA-2026:9228
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9228
fixed_packages
aliases CVE-2026-6100
risk_score 4.1
exploitability 0.5
weighted_severity 8.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rcu5-gpmt-r7cb
9
url VCID-zh1r-7rzh-2bez
vulnerability_id VCID-zh1r-7rzh-2bez
summary cpython: Header injection in http.cookies.Morsel in Python
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0672.json
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0672.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-0672
reference_id
reference_type
scores
0
value 0.00158
scoring_system epss
scoring_elements 0.36748
published_at 2026-04-02T12:55:00Z
1
value 0.00158
scoring_system epss
scoring_elements 0.36259
published_at 2026-04-29T12:55:00Z
2
value 0.00158
scoring_system epss
scoring_elements 0.36779
published_at 2026-04-04T12:55:00Z
3
value 0.00158
scoring_system epss
scoring_elements 0.36615
published_at 2026-04-07T12:55:00Z
4
value 0.00158
scoring_system epss
scoring_elements 0.36667
published_at 2026-04-08T12:55:00Z
5
value 0.00158
scoring_system epss
scoring_elements 0.36683
published_at 2026-04-09T12:55:00Z
6
value 0.00158
scoring_system epss
scoring_elements 0.36692
published_at 2026-04-11T12:55:00Z
7
value 0.00158
scoring_system epss
scoring_elements 0.36658
published_at 2026-04-12T12:55:00Z
8
value 0.00158
scoring_system epss
scoring_elements 0.36632
published_at 2026-04-13T12:55:00Z
9
value 0.00158
scoring_system epss
scoring_elements 0.36677
published_at 2026-04-16T12:55:00Z
10
value 0.00158
scoring_system epss
scoring_elements 0.36659
published_at 2026-04-18T12:55:00Z
11
value 0.00158
scoring_system epss
scoring_elements 0.36599
published_at 2026-04-21T12:55:00Z
12
value 0.00158
scoring_system epss
scoring_elements 0.36375
published_at 2026-04-24T12:55:00Z
13
value 0.00158
scoring_system epss
scoring_elements 0.36345
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-0672
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0672
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0672
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126761
reference_id 1126761
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126761
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126762
reference_id 1126762
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126762
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126763
reference_id 1126763
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126763
7
reference_url https://github.com/python/cpython/issues/143919
reference_id 143919
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/
url https://github.com/python/cpython/issues/143919
8
reference_url https://github.com/python/cpython/pull/143920
reference_id 143920
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/
url https://github.com/python/cpython/pull/143920
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431374
reference_id 2431374
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431374
10
reference_url https://github.com/python/cpython/commit/62700107418eb2cca3fc88da036a243ea975f172
reference_id 62700107418eb2cca3fc88da036a243ea975f172
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/
url https://github.com/python/cpython/commit/62700107418eb2cca3fc88da036a243ea975f172
11
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/6VFLQQEIX673KXKFUZXCUNE5AZOGZ45M/
reference_id 6VFLQQEIX673KXKFUZXCUNE5AZOGZ45M
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/6VFLQQEIX673KXKFUZXCUNE5AZOGZ45M/
12
reference_url https://github.com/python/cpython/commit/712452e6f1d4b9f7f8c4c92ebfcaac1705faa440
reference_id 712452e6f1d4b9f7f8c4c92ebfcaac1705faa440
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/
url https://github.com/python/cpython/commit/712452e6f1d4b9f7f8c4c92ebfcaac1705faa440
13
reference_url https://github.com/python/cpython/commit/7852d72b653fea0199acf5fc2a84f6f8b84eba8d
reference_id 7852d72b653fea0199acf5fc2a84f6f8b84eba8d
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/
url https://github.com/python/cpython/commit/7852d72b653fea0199acf5fc2a84f6f8b84eba8d
14
reference_url https://github.com/python/cpython/commit/918387e4912d12ffc166c8f2a38df92b6ec756ca
reference_id 918387e4912d12ffc166c8f2a38df92b6ec756ca
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/
url https://github.com/python/cpython/commit/918387e4912d12ffc166c8f2a38df92b6ec756ca
15
reference_url https://github.com/python/cpython/commit/95746b3a13a985787ef53b977129041971ed7f70
reference_id 95746b3a13a985787ef53b977129041971ed7f70
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/
url https://github.com/python/cpython/commit/95746b3a13a985787ef53b977129041971ed7f70
16
reference_url https://github.com/python/cpython/commit/b1869ff648bbee0717221d09e6deff46617f3e85
reference_id b1869ff648bbee0717221d09e6deff46617f3e85
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/
url https://github.com/python/cpython/commit/b1869ff648bbee0717221d09e6deff46617f3e85
17
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
18
reference_url https://usn.ubuntu.com/8018-1/
reference_id USN-8018-1
reference_type
scores
url https://usn.ubuntu.com/8018-1/
19
reference_url https://usn.ubuntu.com/8018-3/
reference_id USN-8018-3
reference_type
scores
url https://usn.ubuntu.com/8018-3/
fixed_packages
aliases CVE-2026-0672
risk_score 2.7
exploitability 0.5
weighted_severity 5.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zh1r-7rzh-2bez
10
url VCID-zxzn-25zt-ukct
vulnerability_id VCID-zxzn-25zt-ukct
summary Mitgation of CVE-2026-4519 was incomplete. If the URL contained "%action" the mitigation could be bypassed for certain browser types the "webbrowser.open()" API could have commands injected into the underlying shell. See CVE-2026-4519 for details.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4786.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4786.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-4786
reference_id
reference_type
scores
0
value 0.00015
scoring_system epss
scoring_elements 0.0299
published_at 2026-04-16T12:55:00Z
1
value 0.00015
scoring_system epss
scoring_elements 0.02998
published_at 2026-04-18T12:55:00Z
2
value 0.0002
scoring_system epss
scoring_elements 0.05385
published_at 2026-04-24T12:55:00Z
3
value 0.0002
scoring_system epss
scoring_elements 0.05347
published_at 2026-04-21T12:55:00Z
4
value 0.0002
scoring_system epss
scoring_elements 0.05427
published_at 2026-04-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-4786
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4786
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4786
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/python/cpython/issues/148169
reference_id 148169
reference_type
scores
0
value 7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/
url https://github.com/python/cpython/issues/148169
5
reference_url https://github.com/python/cpython/pull/148170
reference_id 148170
reference_type
scores
0
value 7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/
url https://github.com/python/cpython/pull/148170
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2458049
reference_id 2458049
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2458049
7
reference_url https://github.com/python/cpython/commit/28b4ad38067bbdad34edfcd03ad2de5f06387e53
reference_id 28b4ad38067bbdad34edfcd03ad2de5f06387e53
reference_type
scores
0
value 7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/
url https://github.com/python/cpython/commit/28b4ad38067bbdad34edfcd03ad2de5f06387e53
8
reference_url https://github.com/python/cpython/commit/c5767a72838a8dda9d6dc5d3558075b055c56bca
reference_id c5767a72838a8dda9d6dc5d3558075b055c56bca
reference_type
scores
0
value 7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/
url https://github.com/python/cpython/commit/c5767a72838a8dda9d6dc5d3558075b055c56bca
9
reference_url https://github.com/python/cpython/commit/d22922c8a7958353689dc4763dd72da2dea03fff
reference_id d22922c8a7958353689dc4763dd72da2dea03fff
reference_type
scores
0
value 7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/
url https://github.com/python/cpython/commit/d22922c8a7958353689dc4763dd72da2dea03fff
10
reference_url https://github.com/python/cpython/commit/d6d68494be70bdbda20f89f83801ba52ec37daa4
reference_id d6d68494be70bdbda20f89f83801ba52ec37daa4
reference_type
scores
0
value 7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/
url https://github.com/python/cpython/commit/d6d68494be70bdbda20f89f83801ba52ec37daa4
11
reference_url https://github.com/python/cpython/commit/f4654824ae0850ac87227fb270f9057477946769
reference_id f4654824ae0850ac87227fb270f9057477946769
reference_type
scores
0
value 7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/
url https://github.com/python/cpython/commit/f4654824ae0850ac87227fb270f9057477946769
12
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/
reference_id JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5
reference_type
scores
0
value 7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/
13
reference_url https://access.redhat.com/errata/RHSA-2026:10117
reference_id RHSA-2026:10117
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10117
14
reference_url https://access.redhat.com/errata/RHSA-2026:10140
reference_id RHSA-2026:10140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10140
15
reference_url https://access.redhat.com/errata/RHSA-2026:10141
reference_id RHSA-2026:10141
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10141
16
reference_url https://access.redhat.com/errata/RHSA-2026:10711
reference_id RHSA-2026:10711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10711
17
reference_url https://access.redhat.com/errata/RHSA-2026:10745
reference_id RHSA-2026:10745
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10745
18
reference_url https://access.redhat.com/errata/RHSA-2026:10774
reference_id RHSA-2026:10774
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10774
19
reference_url https://access.redhat.com/errata/RHSA-2026:10949
reference_id RHSA-2026:10949
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10949
20
reference_url https://access.redhat.com/errata/RHSA-2026:10950
reference_id RHSA-2026:10950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10950
21
reference_url https://access.redhat.com/errata/RHSA-2026:11062
reference_id RHSA-2026:11062
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11062
22
reference_url https://access.redhat.com/errata/RHSA-2026:11077
reference_id RHSA-2026:11077
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11077
23
reference_url https://access.redhat.com/errata/RHSA-2026:11768
reference_id RHSA-2026:11768
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11768
24
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
25
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
26
reference_url https://access.redhat.com/errata/RHSA-2026:9228
reference_id RHSA-2026:9228
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9228
fixed_packages
aliases CVE-2026-4786
risk_score 3.2
exploitability 0.5
weighted_severity 6.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zxzn-25zt-ukct
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.13-2%3Farch=el8_10