{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","type":"deb","namespace":"debian","name":"pypy3","version":"7.3.22+dfsg-1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64140?format=json","vulnerability_id":"VCID-11ed-tk56-8khn","summary":"python: Python: Command-line option injection in webbrowser.open() via crafted URLs","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4519.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4519.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4519","reference_id":"","reference_type":"","scores":[{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.06395","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.09433","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.09382","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.09344","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.1011","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.1015","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.09964","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10088","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.1005","published_at":"2026-04-08T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.0081","published_at":"2026-04-26T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00806","published_at":"2026-04-29T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00808","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4519"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4519","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4519"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/143930","reference_id":"143930","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/issues/143930"},{"reference_url":"https://github.com/python/cpython/pull/143931","reference_id":"143931","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/pull/143931"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2449649","reference_id":"2449649","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2449649"},{"reference_url":"https://github.com/python/cpython/commit/3681d47a440865aead912a054d4599087b4270dd","reference_id":"3681d47a440865aead912a054d4599087b4270dd","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/3681d47a440865aead912a054d4599087b4270dd"},{"reference_url":"https://github.com/python/cpython/commit/43fe06b96f6a6cf5cfd5bdab20b8649374956866","reference_id":"43fe06b96f6a6cf5cfd5bdab20b8649374956866","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/43fe06b96f6a6cf5cfd5bdab20b8649374956866"},{"reference_url":"https://github.com/python/cpython/commit/591ed890270c5697b013bf637029fb3e6cd2d73e","reference_id":"591ed890270c5697b013bf637029fb3e6cd2d73e","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/591ed890270c5697b013bf637029fb3e6cd2d73e"},{"reference_url":"https://github.com/python/cpython/commit/594b5a05dc9913880ac92eded440defbf32a28d1","reference_id":"594b5a05dc9913880ac92eded440defbf32a28d1","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/594b5a05dc9913880ac92eded440defbf32a28d1"},{"reference_url":"https://github.com/python/cpython/commit/82a24a4442312bdcfc4c799885e8b3e00990f02b","reference_id":"82a24a4442312bdcfc4c799885e8b3e00990f02b","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/82a24a4442312bdcfc4c799885e8b3e00990f02b"},{"reference_url":"https://github.com/python/cpython/commit/89bfb8e5ed3c7caa241028f1a4eac5f6275a46a4","reference_id":"89bfb8e5ed3c7caa241028f1a4eac5f6275a46a4","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/89bfb8e5ed3c7caa241028f1a4eac5f6275a46a4"},{"reference_url":"https://github.com/python/cpython/commit/9669a912a0e329c094e992204d6bdb8787024d76","reference_id":"9669a912a0e329c094e992204d6bdb8787024d76","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/9669a912a0e329c094e992204d6bdb8787024d76"},{"reference_url":"https://github.com/python/cpython/commit/96fc5048605863c7b6fd6289643feb0e97edd96c","reference_id":"96fc5048605863c7b6fd6289643feb0e97edd96c","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/96fc5048605863c7b6fd6289643feb0e97edd96c"},{"reference_url":"https://github.com/python/cpython/commit/ad4d5ba32af4d80b0dfa2ba9d8203bfb219e60a5","reference_id":"ad4d5ba32af4d80b0dfa2ba9d8203bfb219e60a5","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/ad4d5ba32af4d80b0dfa2ba9d8203bfb219e60a5"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS/","reference_id":"AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS/"},{"reference_url":"https://github.com/python/cpython/commit/cbba6119391112aba9c5aebf7b94aea447922c48","reference_id":"cbba6119391112aba9c5aebf7b94aea447922c48","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/cbba6119391112aba9c5aebf7b94aea447922c48"},{"reference_url":"https://github.com/python/cpython/commit/cc023511238ad93ecc8796157c6f9139a2bb2932","reference_id":"cc023511238ad93ecc8796157c6f9139a2bb2932","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/cc023511238ad93ecc8796157c6f9139a2bb2932"},{"reference_url":"https://github.com/python/cpython/commit/ceac1efc66516ac387eef2c9a0ce671895b44f03","reference_id":"ceac1efc66516ac387eef2c9a0ce671895b44f03","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T14:30:47Z/"}],"url":"https://github.com/python/cpython/commit/ceac1efc66516ac387eef2c9a0ce671895b44f03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10065","reference_id":"RHSA-2026:10065","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10065"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10101","reference_id":"RHSA-2026:10101","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10101"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10102","reference_id":"RHSA-2026:10102","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10102"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10111","reference_id":"RHSA-2026:10111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10140","reference_id":"RHSA-2026:10140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10141","reference_id":"RHSA-2026:10141","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10141"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6016","reference_id":"RHSA-2026:6016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6035","reference_id":"RHSA-2026:6035","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6035"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6256","reference_id":"RHSA-2026:6256","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6256"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6281","reference_id":"RHSA-2026:6281","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6281"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6283","reference_id":"RHSA-2026:6283","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6283"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6285","reference_id":"RHSA-2026:6285","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6285"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6286","reference_id":"RHSA-2026:6286","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6286"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6473","reference_id":"RHSA-2026:6473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6766","reference_id":"RHSA-2026:6766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7010","reference_id":"RHSA-2026:7010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7244","reference_id":"RHSA-2026:7244","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7244"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7329","reference_id":"RHSA-2026:7329","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7329"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7335","reference_id":"RHSA-2026:7335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8746","reference_id":"RHSA-2026:8746","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8747","reference_id":"RHSA-2026:8747","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8747"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8748","reference_id":"RHSA-2026:8748","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8748"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9042","reference_id":"RHSA-2026:9042","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9042"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9260","reference_id":"RHSA-2026:9260","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9260"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9261","reference_id":"RHSA-2026:9261","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9261"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9262","reference_id":"RHSA-2026:9262","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9262"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9289","reference_id":"RHSA-2026:9289","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9289"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9354","reference_id":"RHSA-2026:9354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9354"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9386","reference_id":"RHSA-2026:9386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9387","reference_id":"RHSA-2026:9387","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9387"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9591","reference_id":"RHSA-2026:9591","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9591"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9614","reference_id":"RHSA-2026:9614","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9614"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9621","reference_id":"RHSA-2026:9621","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9621"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9705","reference_id":"RHSA-2026:9705","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9705"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9745","reference_id":"RHSA-2026:9745","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9745"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-4519"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-11ed-tk56-8khn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31515?format=json","vulnerability_id":"VCID-1hw3-vhwb-nkcd","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-12718.json","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-12718.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-12718","reference_id":"","reference_type":"","scores":[{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71903","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71904","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.719","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71854","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71871","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71867","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71825","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71842","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71793","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71859","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71835","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71824","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71785","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00692","scoring_system":"epss","scoring_elements":"0.71811","published_at":"2026-04-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-12718"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/127987","reference_id":"127987","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/issues/127987"},{"reference_url":"https://github.com/python/cpython/issues/135034","reference_id":"135034","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/issues/135034"},{"reference_url":"https://github.com/python/cpython/pull/135037","reference_id":"135037","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/pull/135037"},{"reference_url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da","reference_id":"19de092debb3d7e832e5672cc2f7b788d35951da","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370013","reference_id":"2370013","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370013"},{"reference_url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9","reference_id":"28463dba112af719df1e8b0391c46787ad756dd9","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9"},{"reference_url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a","reference_id":"3612d8f51741b11f36f8fb0494d79086bac9390a","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"},{"reference_url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_id":"4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e"},{"reference_url":"https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f","reference_id":"52398e33eff261329a0180ac1d54f42f","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"},{"reference_url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a","reference_id":"9c1110ef6652687d7c55f590f909720eddde965a","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a"},{"reference_url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_id":"9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"},{"reference_url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_id":"aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01"},{"reference_url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_id":"dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/","reference_id":"MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10026","reference_id":"RHSA-2025:10026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10028","reference_id":"RHSA-2025:10028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10031","reference_id":"RHSA-2025:10031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10128","reference_id":"RHSA-2025:10128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10136","reference_id":"RHSA-2025:10136","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10140","reference_id":"RHSA-2025:10140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10148","reference_id":"RHSA-2025:10148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10189","reference_id":"RHSA-2025:10189","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10189"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10399","reference_id":"RHSA-2025:10399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10399"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10484","reference_id":"RHSA-2025:10484","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10484"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10602","reference_id":"RHSA-2025:10602","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10602"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11386","reference_id":"RHSA-2025:11386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13267","reference_id":"RHSA-2025:13267","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13267"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:18219","reference_id":"RHSA-2025:18219","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:18219"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9918","reference_id":"RHSA-2025:9918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0934","reference_id":"RHSA-2026:0934","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0934"},{"reference_url":"https://usn.ubuntu.com/7583-1/","reference_id":"USN-7583-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7583-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936204?format=json","purl":"pkg:deb/debian/pypy3@7.3.20%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.20%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-12718"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1hw3-vhwb-nkcd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64367?format=json","vulnerability_id":"VCID-1pr1-jkqa-43g6","summary":"cpython: CPython: Logging Bypass in Legacy .pyc File Handling","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2297.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2297.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-2297","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03392","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03405","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04728","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04498","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04534","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04549","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04539","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04525","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04509","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04481","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.0449","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04627","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04669","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04703","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-2297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2297"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/145506","reference_id":"145506","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/"}],"url":"https://github.com/python/cpython/issues/145506"},{"reference_url":"https://github.com/python/cpython/pull/145507","reference_id":"145507","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/"}],"url":"https://github.com/python/cpython/pull/145507"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2444691","reference_id":"2444691","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2444691"},{"reference_url":"https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e","reference_id":"482d6f8bdba9da3725d272e8bb4a2d25fb6a603e","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/"}],"url":"https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e"},{"reference_url":"https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e","reference_id":"a51b1b512de1d56b3714b65628a2eae2b07e535e","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/"}],"url":"https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e"},{"reference_url":"https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86","reference_id":"e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-12T14:58:41Z/"}],"url":"https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10950","reference_id":"RHSA-2026:10950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-2297"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1pr1-jkqa-43g6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/66415?format=json","vulnerability_id":"VCID-1uk5-6yqb-dyb5","summary":"cpython: Out-of-memory when loading Plist","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13837.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13837.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-13837","reference_id":"","reference_type":"","scores":[{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07029","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10713","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10652","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10619","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10621","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10668","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10539","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10522","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10659","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10683","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10714","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10701","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10643","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.1057","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-13837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126782","reference_id":"1126782","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126782"},{"reference_url":"https://github.com/python/cpython/issues/119342","reference_id":"119342","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/"}],"url":"https://github.com/python/cpython/issues/119342"},{"reference_url":"https://github.com/python/cpython/pull/119343","reference_id":"119343","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/"}],"url":"https://github.com/python/cpython/pull/119343"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2418084","reference_id":"2418084","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2418084"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C/","reference_id":"2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C/"},{"reference_url":"https://github.com/python/cpython/commit/568342cfc8f002d9a15f30238f26b9d2e0e79036","reference_id":"568342cfc8f002d9a15f30238f26b9d2e0e79036","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/"}],"url":"https://github.com/python/cpython/commit/568342cfc8f002d9a15f30238f26b9d2e0e79036"},{"reference_url":"https://github.com/python/cpython/commit/5a8b19677d818fb41ee55f310233772e15aa1a2b","reference_id":"5a8b19677d818fb41ee55f310233772e15aa1a2b","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/"}],"url":"https://github.com/python/cpython/commit/5a8b19677d818fb41ee55f310233772e15aa1a2b"},{"reference_url":"https://github.com/python/cpython/commit/694922cf40aa3a28f898b5f5ee08b71b4922df70","reference_id":"694922cf40aa3a28f898b5f5ee08b71b4922df70","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/"}],"url":"https://github.com/python/cpython/commit/694922cf40aa3a28f898b5f5ee08b71b4922df70"},{"reference_url":"https://github.com/python/cpython/commit/71fa8eb8233b37f16c88b6e3e583b461b205d1ba","reference_id":"71fa8eb8233b37f16c88b6e3e583b461b205d1ba","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/"}],"url":"https://github.com/python/cpython/commit/71fa8eb8233b37f16c88b6e3e583b461b205d1ba"},{"reference_url":"https://github.com/python/cpython/commit/b64441e4852383645af5b435411a6f849dd1b4cb","reference_id":"b64441e4852383645af5b435411a6f849dd1b4cb","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/"}],"url":"https://github.com/python/cpython/commit/b64441e4852383645af5b435411a6f849dd1b4cb"},{"reference_url":"https://github.com/python/cpython/commit/cefee7d118a26ef6cd43db59bb9d98ca9a331111","reference_id":"cefee7d118a26ef6cd43db59bb9d98ca9a331111","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/"}],"url":"https://github.com/python/cpython/commit/cefee7d118a26ef6cd43db59bb9d98ca9a331111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10950","reference_id":"RHSA-2026:10950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/8018-1/","reference_id":"USN-8018-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-13837"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1uk5-6yqb-dyb5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78162?format=json","vulnerability_id":"VCID-2czu-wy37-qugf","summary":"python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48566.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48566.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48566","reference_id":"","reference_type":"","scores":[{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.2714","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26811","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26992","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26967","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26931","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26883","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26875","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27176","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26968","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27036","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27081","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27085","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.2704","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26984","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48566"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48566","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48566"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2238753","reference_id":"2238753","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2238753"},{"reference_url":"https://bugs.python.org/issue40791","reference_id":"issue40791","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/"}],"url":"https://bugs.python.org/issue40791"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20231006-0013/","reference_id":"ntap-20231006-0013","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/"}],"url":"https://security.netapp.com/advisory/ntap-20231006-0013/"},{"reference_url":"https://usn.ubuntu.com/6400-1/","reference_id":"USN-6400-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6400-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7180-1/","reference_id":"USN-7180-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7180-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936187?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2022-48566"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2czu-wy37-qugf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36443?format=json","vulnerability_id":"VCID-2j3t-a3r6-vfg7","summary":"Multiple vulnerabilities have been found in Python, the worst of\n    which might allow attackers to access sensitive information.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3426.json","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3426.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3426","reference_id":"","reference_type":"","scores":[{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23679","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23519","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23827","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23669","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23709","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23721","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.2384","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.2387","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23859","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23913","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23957","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.2394","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23894","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.24042","published_at":"2026-04-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3426","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3426"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1935913","reference_id":"1935913","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1935913"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/25HVHLBGO2KNPXJ3G426QEYSSCECJDU5/","reference_id":"25HVHLBGO2KNPXJ3G426QEYSSCECJDU5","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/25HVHLBGO2KNPXJ3G426QEYSSCECJDU5/"},{"reference_url":"https://security.archlinux.org/AVG-1675","reference_id":"AVG-1675","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1675"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI/","reference_id":"BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7/","reference_id":"DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7/"},{"reference_url":"https://security.gentoo.org/glsa/202104-04","reference_id":"GLSA-202104-04","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://security.gentoo.org/glsa/202104-04"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE/","reference_id":"LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html","reference_id":"msg00039.html","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/","reference_id":"N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210629-0003/","reference_id":"ntap-20210629-0003","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210629-0003/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B/","reference_id":"QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4160","reference_id":"RHSA-2021:4160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4162","reference_id":"RHSA-2021:4162","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4162"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4399","reference_id":"RHSA-2021:4399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4399"},{"reference_url":"https://usn.ubuntu.com/5342-1/","reference_id":"USN-5342-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5342-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5342-3/","reference_id":"USN-USN-5342-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5342-3/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF/","reference_id":"VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936193?format=json","purl":"pkg:deb/debian/pypy3@7.3.3%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.3%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2021-3426"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2j3t-a3r6-vfg7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42640?format=json","vulnerability_id":"VCID-2shb-2cvn-dyd2","summary":"Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24329.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24329.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24329","reference_id":"","reference_type":"","scores":[{"value":"0.01081","scoring_system":"epss","scoring_elements":"0.77879","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01081","scoring_system":"epss","scoring_elements":"0.77911","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.80742","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.80822","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.80808","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.8078","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.80778","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.8075","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81581","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81602","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81653","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81633","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81627","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.816","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24329"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24329","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24329"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/102153","reference_id":"102153","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://github.com/python/cpython/issues/102153"},{"reference_url":"https://www.kb.cert.org/vuls/id/127587","reference_id":"127587","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://www.kb.cert.org/vuls/id/127587"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2173917","reference_id":"2173917","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2173917"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PEVICI7YNGGMSL3UCMWGE66QFLATH72/","reference_id":"6PEVICI7YNGGMSL3UCMWGE66QFLATH72","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PEVICI7YNGGMSL3UCMWGE66QFLATH72/"},{"reference_url":"https://github.com/python/cpython/pull/99421","reference_id":"99421","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://github.com/python/cpython/pull/99421"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO/","reference_id":"DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G/","reference_id":"EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG/","reference_id":"F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG/"},{"reference_url":"https://security.gentoo.org/glsa/202405-01","reference_id":"GLSA-202405-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-01"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN/","reference_id":"GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7/","reference_id":"H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA/","reference_id":"JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T/","reference_id":"LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP/","reference_id":"MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230324-0004/","reference_id":"ntap-20230324-0004","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230324-0004/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR/","reference_id":"O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR/","reference_id":"OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI/","reference_id":"PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44/","reference_id":"PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44/"},{"reference_url":"https://pointernull.com/security/python-url-parse-problem.html","reference_id":"python-url-parse-problem.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://pointernull.com/security/python-url-parse-problem.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL/","reference_id":"Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4/","reference_id":"QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RA2MBEEES6L46OD64OBSVUUMGKNGMOWW/","reference_id":"RA2MBEEES6L46OD64OBSVUUMGKNGMOWW","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RA2MBEEES6L46OD64OBSVUUMGKNGMOWW/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3550","reference_id":"RHSA-2023:3550","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3550"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3555","reference_id":"RHSA-2023:3555","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3555"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3556","reference_id":"RHSA-2023:3556","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3556"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3585","reference_id":"RHSA-2023:3585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3591","reference_id":"RHSA-2023:3591","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3591"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3594","reference_id":"RHSA-2023:3594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3595","reference_id":"RHSA-2023:3595","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3595"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3776","reference_id":"RHSA-2023:3776","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3776"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3777","reference_id":"RHSA-2023:3777","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3777"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3780","reference_id":"RHSA-2023:3780","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3780"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3781","reference_id":"RHSA-2023:3781","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3781"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3796","reference_id":"RHSA-2023:3796","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3796"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3810","reference_id":"RHSA-2023:3810","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3810"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3811","reference_id":"RHSA-2023:3811","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3811"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3931","reference_id":"RHSA-2023:3931","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3931"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3932","reference_id":"RHSA-2023:3932","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3932"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3934","reference_id":"RHSA-2023:3934","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3934"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3935","reference_id":"RHSA-2023:3935","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3935"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3936","reference_id":"RHSA-2023:3936","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3936"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4004","reference_id":"RHSA-2023:4004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4008","reference_id":"RHSA-2023:4008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4032","reference_id":"RHSA-2023:4032","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4032"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4038","reference_id":"RHSA-2023:4038","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4038"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4203","reference_id":"RHSA-2023:4203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4282","reference_id":"RHSA-2023:4282","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4282"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6793","reference_id":"RHSA-2023:6793","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6793"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ/","reference_id":"T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG/","reference_id":"TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP/","reference_id":"U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC/","reference_id":"UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://usn.ubuntu.com/5960-1/","reference_id":"USN-5960-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5960-1/"},{"reference_url":"https://usn.ubuntu.com/6139-1/","reference_id":"USN-6139-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6139-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7180-1/","reference_id":"USN-7180-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7180-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU/","reference_id":"WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936197?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936196?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936198?format=json","purl":"pkg:deb/debian/pypy3@7.3.12%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.12%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2023-24329"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2shb-2cvn-dyd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/75343?format=json","vulnerability_id":"VCID-2v5u-2z4w-ffgx","summary":"python: incorrect IPv4 and IPv6 private ranges","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4032.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4032.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-4032","reference_id":"","reference_type":"","scores":[{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78371","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78355","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78348","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78316","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.7832","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78322","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78292","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78297","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78314","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78288","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78243","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78274","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78256","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78282","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-4032"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4032","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4032"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/113171","reference_id":"113171","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/issues/113171"},{"reference_url":"https://github.com/python/cpython/pull/113179","reference_id":"113179","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/pull/113179"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2292921","reference_id":"2292921","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2292921"},{"reference_url":"https://github.com/python/cpython/commit/22adf29da8d99933ffed8647d3e0726edd16f7f8","reference_id":"22adf29da8d99933ffed8647d3e0726edd16f7f8","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/22adf29da8d99933ffed8647d3e0726edd16f7f8"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/06/17/3","reference_id":"3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/06/17/3"},{"reference_url":"https://github.com/python/cpython/commit/40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f","reference_id":"40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f"},{"reference_url":"https://github.com/python/cpython/commit/895f7e2ac23eff4743143beef0f0c5ac71ea27d3","reference_id":"895f7e2ac23eff4743143beef0f0c5ac71ea27d3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/895f7e2ac23eff4743143beef0f0c5ac71ea27d3"},{"reference_url":"https://github.com/python/cpython/commit/ba431579efdcbaed7a96f2ac4ea0775879a332fb","reference_id":"ba431579efdcbaed7a96f2ac4ea0775879a332fb","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/ba431579efdcbaed7a96f2ac4ea0775879a332fb"},{"reference_url":"https://github.com/python/cpython/commit/c62c9e518b784fe44432a3f4fc265fb95b651906","reference_id":"c62c9e518b784fe44432a3f4fc265fb95b651906","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/c62c9e518b784fe44432a3f4fc265fb95b651906"},{"reference_url":"https://github.com/python/cpython/commit/f86b17ac511e68192ba71f27e752321a3252cee3","reference_id":"f86b17ac511e68192ba71f27e752321a3252cee3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/f86b17ac511e68192ba71f27e752321a3252cee3"},{"reference_url":"https://www.iana.org/assignments/iana-ipv4-special-registry/iana-ipv4-special-registry.xhtml","reference_id":"iana-ipv4-special-registry.xhtml","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://www.iana.org/assignments/iana-ipv4-special-registry/iana-ipv4-special-registry.xhtml"},{"reference_url":"https://www.iana.org/assignments/iana-ipv6-special-registry/iana-ipv6-special-registry.xhtml","reference_id":"iana-ipv6-special-registry.xhtml","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://www.iana.org/assignments/iana-ipv6-special-registry/iana-ipv6-special-registry.xhtml"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA/","reference_id":"NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240726-0004/","reference_id":"ntap-20240726-0004","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240726-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4766","reference_id":"RHSA-2024:4766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4779","reference_id":"RHSA-2024:4779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5962","reference_id":"RHSA-2024:5962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6030","reference_id":"RHSA-2024:6030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6961","reference_id":"RHSA-2024:6961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6962","reference_id":"RHSA-2024:6962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6975","reference_id":"RHSA-2024:6975","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6975"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7417","reference_id":"RHSA-2024:7417","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7417"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9190","reference_id":"RHSA-2024:9190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9190"},{"reference_url":"https://usn.ubuntu.com/6928-1/","reference_id":"USN-6928-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6928-1/"},{"reference_url":"https://usn.ubuntu.com/6941-1/","reference_id":"USN-6941-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6941-1/"},{"reference_url":"https://usn.ubuntu.com/7348-1/","reference_id":"USN-7348-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936203?format=json","purl":"pkg:deb/debian/pypy3@7.3.18%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.18%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-4032"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2v5u-2z4w-ffgx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31516?format=json","vulnerability_id":"VCID-4afh-28ss-mudf","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4138.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4138.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4138","reference_id":"","reference_type":"","scores":[{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50673","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50648","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50699","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50655","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.5071","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50706","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50748","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50725","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.5075","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50756","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50736","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50685","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50693","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4138"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/135034","reference_id":"135034","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/issues/135034"},{"reference_url":"https://github.com/python/cpython/pull/135037","reference_id":"135037","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/pull/135037"},{"reference_url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da","reference_id":"19de092debb3d7e832e5672cc2f7b788d35951da","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2372426","reference_id":"2372426","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2372426"},{"reference_url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9","reference_id":"28463dba112af719df1e8b0391c46787ad756dd9","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9"},{"reference_url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a","reference_id":"3612d8f51741b11f36f8fb0494d79086bac9390a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"},{"reference_url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_id":"4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e"},{"reference_url":"https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f","reference_id":"52398e33eff261329a0180ac1d54f42f","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"},{"reference_url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a","reference_id":"9c1110ef6652687d7c55f590f909720eddde965a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a"},{"reference_url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_id":"9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"},{"reference_url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_id":"aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01"},{"reference_url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_id":"dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/","reference_id":"MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10026","reference_id":"RHSA-2025:10026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10028","reference_id":"RHSA-2025:10028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10031","reference_id":"RHSA-2025:10031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10128","reference_id":"RHSA-2025:10128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10136","reference_id":"RHSA-2025:10136","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10140","reference_id":"RHSA-2025:10140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10148","reference_id":"RHSA-2025:10148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10189","reference_id":"RHSA-2025:10189","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10189"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10399","reference_id":"RHSA-2025:10399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10399"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10484","reference_id":"RHSA-2025:10484","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10484"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10602","reference_id":"RHSA-2025:10602","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10602"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11386","reference_id":"RHSA-2025:11386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13267","reference_id":"RHSA-2025:13267","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13267"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:18219","reference_id":"RHSA-2025:18219","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:18219"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9918","reference_id":"RHSA-2025:9918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0934","reference_id":"RHSA-2026:0934","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0934"},{"reference_url":"https://usn.ubuntu.com/7583-1/","reference_id":"USN-7583-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7583-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936204?format=json","purl":"pkg:deb/debian/pypy3@7.3.20%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.20%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-4138"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4afh-28ss-mudf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38870?format=json","vulnerability_id":"VCID-4gsg-5e6s-63g4","summary":"Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-28861","reference_id":"","reference_type":"","scores":[{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80333","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.8034","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80349","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80392","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80407","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80388","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80378","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.8036","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80468","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80451","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80445","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80419","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80415","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80414","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80385","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-28861"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2120642","reference_id":"2120642","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2120642"},{"reference_url":"https://github.com/python/cpython/pull/24848","reference_id":"24848","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://github.com/python/cpython/pull/24848"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/","reference_id":"2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/","reference_id":"5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/","reference_id":"5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/"},{"reference_url":"https://github.com/python/cpython/pull/93879","reference_id":"93879","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://github.com/python/cpython/pull/93879"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/","reference_id":"DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/","reference_id":"HPX4XHT2FGVQYLY2STT2MRVENILNZTTU","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/","reference_id":"I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/","reference_id":"IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/"},{"reference_url":"https://bugs.python.org/issue43223","reference_id":"issue43223","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://bugs.python.org/issue43223"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/","reference_id":"KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/","reference_id":"OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/","reference_id":"QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6766","reference_id":"RHSA-2022:6766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8353","reference_id":"RHSA-2022:8353","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8353"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0833","reference_id":"RHSA-2023:0833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2763","reference_id":"RHSA-2023:2763","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2763"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2764","reference_id":"RHSA-2023:2764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2764"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/","reference_id":"S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/","reference_id":"TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/"},{"reference_url":"https://usn.ubuntu.com/5629-1/","reference_id":"USN-5629-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5629-1/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/","reference_id":"WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/","reference_id":"X46T4EFTIBXZRYTGASBDEZGYJINH2OWV","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936186?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936185?format=json","purl":"pkg:deb/debian/pypy3@7.3.10%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.10%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2021-28861"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4gsg-5e6s-63g4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78163?format=json","vulnerability_id":"VCID-4q79-666d-rygx","summary":"python: XML External Entity in XML processing plistlib module","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48565.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48565.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48565","reference_id":"","reference_type":"","scores":[{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91625","published_at":"2026-04-02T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91676","published_at":"2026-04-29T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91661","published_at":"2026-04-11T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91663","published_at":"2026-04-12T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.9166","published_at":"2026-04-13T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91681","published_at":"2026-04-16T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91673","published_at":"2026-04-18T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91674","published_at":"2026-04-21T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.9168","published_at":"2026-04-24T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91678","published_at":"2026-04-26T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91631","published_at":"2026-04-04T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91639","published_at":"2026-04-07T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91651","published_at":"2026-04-08T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91657","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48565"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2240059","reference_id":"2240059","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2240059"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7/","reference_id":"AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M/","reference_id":"BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M/"},{"reference_url":"https://bugs.python.org/issue42051","reference_id":"issue42051","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://bugs.python.org/issue42051"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA/","reference_id":"KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20231006-0007/","reference_id":"ntap-20231006-0007","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://security.netapp.com/advisory/ntap-20231006-0007/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2987","reference_id":"RHSA-2024:2987","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2987"},{"reference_url":"https://usn.ubuntu.com/6354-1/","reference_id":"USN-6354-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6354-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7180-1/","reference_id":"USN-7180-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7180-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936187?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2022-48565"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4q79-666d-rygx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42641?format=json","vulnerability_id":"VCID-4z89-3tfk-pyge","summary":"Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40217.json","reference_id":"","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40217.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-40217","reference_id":"","reference_type":"","scores":[{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.69003","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68929","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68952","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68938","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68909","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.6895","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.6896","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.6894","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68991","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68997","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69341","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69324","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69371","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69321","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-40217"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40217","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40217"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2235789","reference_id":"2235789","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2235789"},{"reference_url":"https://security.gentoo.org/glsa/202405-01","reference_id":"GLSA-202405-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-01"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20231006-0014/","reference_id":"ntap-20231006-0014","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://security.netapp.com/advisory/ntap-20231006-0014/"},{"reference_url":"https://mail.python.org/archives/list/security-announce%40python.org/thread/PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY/","reference_id":"PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://mail.python.org/archives/list/security-announce%40python.org/thread/PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5456","reference_id":"RHSA-2023:5456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5462","reference_id":"RHSA-2023:5462","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5463","reference_id":"RHSA-2023:5463","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5463"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5472","reference_id":"RHSA-2023:5472","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5472"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5528","reference_id":"RHSA-2023:5528","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5528"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5531","reference_id":"RHSA-2023:5531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5990","reference_id":"RHSA-2023:5990","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5990"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5991","reference_id":"RHSA-2023:5991","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5991"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5992","reference_id":"RHSA-2023:5992","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5992"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5993","reference_id":"RHSA-2023:5993","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5993"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5994","reference_id":"RHSA-2023:5994","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5994"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5995","reference_id":"RHSA-2023:5995","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5996","reference_id":"RHSA-2023:5996","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5996"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5997","reference_id":"RHSA-2023:5997","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5997"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5998","reference_id":"RHSA-2023:5998","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5998"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6068","reference_id":"RHSA-2023:6068","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6068"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6069","reference_id":"RHSA-2023:6069","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6069"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6290","reference_id":"RHSA-2023:6290","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6290"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6793","reference_id":"RHSA-2023:6793","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6793"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6823","reference_id":"RHSA-2023:6823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6885","reference_id":"RHSA-2023:6885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6885"},{"reference_url":"https://www.python.org/dev/security/","reference_id":"security","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://www.python.org/dev/security/"},{"reference_url":"https://usn.ubuntu.com/6513-1/","reference_id":"USN-6513-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6513-1/"},{"reference_url":"https://usn.ubuntu.com/6513-2/","reference_id":"USN-6513-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6513-2/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7180-1/","reference_id":"USN-7180-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7180-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936197?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936196?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936200?format=json","purl":"pkg:deb/debian/pypy3@7.3.13%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.13%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2023-40217"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4z89-3tfk-pyge"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31519?format=json","vulnerability_id":"VCID-5maz-1h1k-3qfj","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4516.json","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4516.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4516","reference_id":"","reference_type":"","scores":[{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43354","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43198","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43381","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43319","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43371","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43386","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43406","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43374","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43359","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43418","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43407","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43341","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43274","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43276","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4516"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4516","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4516"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/pull/129648","reference_id":"129648","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://github.com/python/cpython/pull/129648"},{"reference_url":"https://github.com/python/cpython/issues/133767","reference_id":"133767","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://github.com/python/cpython/issues/133767"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2366509","reference_id":"2366509","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2366509"},{"reference_url":"https://github.com/python/cpython/commit/4398b788ffc1f954a2c552da285477d42a571292","reference_id":"4398b788ffc1f954a2c552da285477d42a571292","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://github.com/python/cpython/commit/4398b788ffc1f954a2c552da285477d42a571292"},{"reference_url":"https://github.com/python/cpython/commit/6279eb8c076d89d3739a6edb393e43c7929b429d","reference_id":"6279eb8c076d89d3739a6edb393e43c7929b429d","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://github.com/python/cpython/commit/6279eb8c076d89d3739a6edb393e43c7929b429d"},{"reference_url":"https://github.com/python/cpython/commit/69b4387f78f413e8c47572a85b3478c47eba8142","reference_id":"69b4387f78f413e8c47572a85b3478c47eba8142","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://github.com/python/cpython/commit/69b4387f78f413e8c47572a85b3478c47eba8142"},{"reference_url":"https://github.com/python/cpython/commit/73b3040f592436385007918887b7e2132aa8431f","reference_id":"73b3040f592436385007918887b7e2132aa8431f","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://github.com/python/cpython/commit/73b3040f592436385007918887b7e2132aa8431f"},{"reference_url":"https://github.com/python/cpython/commit/8d35fd1b34935221aff23a1ab69a429dd156be77","reference_id":"8d35fd1b34935221aff23a1ab69a429dd156be77","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://github.com/python/cpython/commit/8d35fd1b34935221aff23a1ab69a429dd156be77"},{"reference_url":"https://github.com/python/cpython/commit/9f69a58623bd01349a18ba0c7a9cb1dad6a51e8e","reference_id":"9f69a58623bd01349a18ba0c7a9cb1dad6a51e8e","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://github.com/python/cpython/commit/9f69a58623bd01349a18ba0c7a9cb1dad6a51e8e"},{"reference_url":"https://github.com/python/cpython/commit/ab9893c40609935e0d40a6d2a7307ea51aec598b","reference_id":"ab9893c40609935e0d40a6d2a7307ea51aec598b","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://github.com/python/cpython/commit/ab9893c40609935e0d40a6d2a7307ea51aec598b"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/L75IPBBTSCYEF56I2M4KIW353BB3AY74/","reference_id":"L75IPBBTSCYEF56I2M4KIW353BB3AY74","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:18:44Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/L75IPBBTSCYEF56I2M4KIW353BB3AY74/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://usn.ubuntu.com/7570-1/","reference_id":"USN-7570-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7570-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-4516"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5maz-1h1k-3qfj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31521?format=json","vulnerability_id":"VCID-757r-fs6p-qqdd","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4517.json","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4517.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4517","reference_id":"","reference_type":"","scores":[{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53606","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53579","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53576","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53671","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53622","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53625","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00403","scoring_system":"epss","scoring_elements":"0.60903","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00403","scoring_system":"epss","scoring_elements":"0.6091","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00403","scoring_system":"epss","scoring_elements":"0.60907","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00403","scoring_system":"epss","scoring_elements":"0.60923","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00403","scoring_system":"epss","scoring_elements":"0.60918","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00403","scoring_system":"epss","scoring_elements":"0.60876","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00403","scoring_system":"epss","scoring_elements":"0.60895","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00403","scoring_system":"epss","scoring_elements":"0.60898","published_at":"2026-04-24T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4517"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/135034","reference_id":"135034","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"}],"url":"https://github.com/python/cpython/issues/135034"},{"reference_url":"https://github.com/python/cpython/pull/135037","reference_id":"135037","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"}],"url":"https://github.com/python/cpython/pull/135037"},{"reference_url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da","reference_id":"19de092debb3d7e832e5672cc2f7b788d35951da","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"}],"url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370016","reference_id":"2370016","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370016"},{"reference_url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9","reference_id":"28463dba112af719df1e8b0391c46787ad756dd9","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"}],"url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9"},{"reference_url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a","reference_id":"3612d8f51741b11f36f8fb0494d79086bac9390a","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"}],"url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"},{"reference_url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_id":"4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"}],"url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e"},{"reference_url":"https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f","reference_id":"52398e33eff261329a0180ac1d54f42f","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"}],"url":"https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"},{"reference_url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a","reference_id":"9c1110ef6652687d7c55f590f909720eddde965a","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"}],"url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a"},{"reference_url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_id":"9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"}],"url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"},{"reference_url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_id":"aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"}],"url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01"},{"reference_url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_id":"dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"}],"url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/","reference_id":"MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10026","reference_id":"RHSA-2025:10026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10028","reference_id":"RHSA-2025:10028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10031","reference_id":"RHSA-2025:10031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10128","reference_id":"RHSA-2025:10128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10136","reference_id":"RHSA-2025:10136","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10140","reference_id":"RHSA-2025:10140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10148","reference_id":"RHSA-2025:10148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10189","reference_id":"RHSA-2025:10189","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10189"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10399","reference_id":"RHSA-2025:10399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10399"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10484","reference_id":"RHSA-2025:10484","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10484"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10602","reference_id":"RHSA-2025:10602","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10602"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11386","reference_id":"RHSA-2025:11386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13267","reference_id":"RHSA-2025:13267","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13267"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:18219","reference_id":"RHSA-2025:18219","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:18219"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9918","reference_id":"RHSA-2025:9918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0934","reference_id":"RHSA-2026:0934","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0934"},{"reference_url":"https://usn.ubuntu.com/7583-1/","reference_id":"USN-7583-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7583-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936204?format=json","purl":"pkg:deb/debian/pypy3@7.3.20%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.20%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-4517"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-757r-fs6p-qqdd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42639?format=json","vulnerability_id":"VCID-7ka5-7jrn-dber","summary":"Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6597.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6597.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6597","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23141","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22818","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23185","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22974","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23048","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23101","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23121","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23083","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23028","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23041","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23033","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22994","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22828","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22823","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6597"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6597","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6597"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a","reference_id":"02a9259c717738dfe6b463c44d7e17f2b6d2cb3a","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070135","reference_id":"1070135","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070135"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276518","reference_id":"2276518","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276518"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/03/20/5","reference_id":"5","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/03/20/5"},{"reference_url":"https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25","reference_id":"5585334d772b253a01a6730e8202ffb1607c3d25","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25"},{"reference_url":"https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5","reference_id":"6ceb8aeda504b079fef7a57b8d81472f15cdd9a5","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5"},{"reference_url":"https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d","reference_id":"81c16cd94ec38d61aa478b9a452436dc3b1b524d","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d"},{"reference_url":"https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82","reference_id":"8eaeefe49d179ca4908d052745e3bb8b6f238f82","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82"},{"reference_url":"https://github.com/python/cpython/issues/91133","reference_id":"91133","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/issues/91133"},{"reference_url":"https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b","reference_id":"d54e22a669ae6e987199bb5d2c69bb5a46b0083b","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b"},{"reference_url":"https://security.gentoo.org/glsa/202405-01","reference_id":"GLSA-202405-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-01"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html","reference_id":"msg00025.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/","reference_id":"Q5C6ATFC67K53XFV4KE45325S7NS62LD","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3347","reference_id":"RHSA-2024:3347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3391","reference_id":"RHSA-2024:3391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3466","reference_id":"RHSA-2024:3466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3466"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4058","reference_id":"RHSA-2024:4058","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4058"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4077","reference_id":"RHSA-2024:4077","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4077"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4078","reference_id":"RHSA-2024:4078","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4078"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4166","reference_id":"RHSA-2024:4166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4370","reference_id":"RHSA-2024:4370","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4370"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4406","reference_id":"RHSA-2024:4406","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4406"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4456","reference_id":"RHSA-2024:4456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4896","reference_id":"RHSA-2024:4896","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4896"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5535","reference_id":"RHSA-2024:5535","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5535"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5689","reference_id":"RHSA-2024:5689","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5689"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0364","reference_id":"RHSA-2025:0364","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0364"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0646","reference_id":"RHSA-2025:0646","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0646"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0650","reference_id":"RHSA-2025:0650","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0650"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0832","reference_id":"RHSA-2025:0832","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0832"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:1116","reference_id":"RHSA-2025:1116","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:1116"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:1120","reference_id":"RHSA-2025:1120","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:1120"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2705","reference_id":"RHSA-2025:2705","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2705"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/","reference_id":"T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/","reference_id":"U5VHWS52HGD743C47UMCSAK2A773M2YE","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936197?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936196?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936200?format=json","purl":"pkg:deb/debian/pypy3@7.3.13%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.13%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2023-6597"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7ka5-7jrn-dber"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78164?format=json","vulnerability_id":"VCID-7nj2-94zp-d3bp","summary":"python: DoS when processing malformed Apple Property List files in binary format","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48564.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48564.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48564","reference_id":"","reference_type":"","scores":[{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27213","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.2725","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27044","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27113","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27159","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27165","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27121","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27064","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27072","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27046","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27008","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.26962","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.26955","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.2689","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48564"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2249750","reference_id":"2249750","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2249750"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0114","reference_id":"RHSA-2024:0114","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0114"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0430","reference_id":"RHSA-2024:0430","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0430"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0586","reference_id":"RHSA-2024:0586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0586"},{"reference_url":"https://usn.ubuntu.com/6513-1/","reference_id":"USN-6513-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6513-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936187?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2022-48564"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7nj2-94zp-d3bp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31508?format=json","vulnerability_id":"VCID-7s7y-9bw5-m3ep","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6232.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6232.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6232","reference_id":"","reference_type":"","scores":[{"value":"0.03036","scoring_system":"epss","scoring_elements":"0.86705","published_at":"2026-04-26T12:55:00Z"},{"value":"0.03036","scoring_system":"epss","scoring_elements":"0.86697","published_at":"2026-04-24T12:55:00Z"},{"value":"0.03175","scoring_system":"epss","scoring_elements":"0.86908","published_at":"2026-04-02T12:55:00Z"},{"value":"0.03175","scoring_system":"epss","scoring_elements":"0.86927","published_at":"2026-04-04T12:55:00Z"},{"value":"0.03645","scoring_system":"epss","scoring_elements":"0.87889","published_at":"2026-04-29T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88478","published_at":"2026-04-21T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88442","published_at":"2026-04-07T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88461","published_at":"2026-04-08T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88467","published_at":"2026-04-09T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88477","published_at":"2026-04-11T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.8847","published_at":"2026-04-12T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88469","published_at":"2026-04-13T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88483","published_at":"2026-04-16T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.8848","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6232"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/121285","reference_id":"121285","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/issues/121285"},{"reference_url":"https://github.com/python/cpython/pull/121286","reference_id":"121286","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/pull/121286"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309426","reference_id":"2309426","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309426"},{"reference_url":"https://github.com/python/cpython/commit/34ddb64d088dd7ccc321f6103d23153256caa5d4","reference_id":"34ddb64d088dd7ccc321f6103d23153256caa5d4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/34ddb64d088dd7ccc321f6103d23153256caa5d4"},{"reference_url":"https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06","reference_id":"4eaf4891c12589e3c7bdad5f5b076e4c8392dd06","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06"},{"reference_url":"https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4","reference_id":"743acbe872485dc18df4d8ab2dc7895187f062c4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4"},{"reference_url":"https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d","reference_id":"7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d"},{"reference_url":"https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877","reference_id":"b4225ca91547aa97ed3aca391614afbb255bc877","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877"},{"reference_url":"https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf","reference_id":"d449caf8a179e3b954268b3a88eb9170be3c8fbf","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf"},{"reference_url":"https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373","reference_id":"ed3a49ea734ada357ff4442996fd4ae71d253373","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/","reference_id":"JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6909","reference_id":"RHSA-2024:6909","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6909"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6975","reference_id":"RHSA-2024:6975","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6975"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7415","reference_id":"RHSA-2024:7415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7415"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7647","reference_id":"RHSA-2024:7647","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7647"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8130","reference_id":"RHSA-2024:8130","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8130"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8359","reference_id":"RHSA-2024:8359","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8359"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8374","reference_id":"RHSA-2024:8374","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8446","reference_id":"RHSA-2024:8446","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8446"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8447","reference_id":"RHSA-2024:8447","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8447"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8490","reference_id":"RHSA-2024:8490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8504","reference_id":"RHSA-2024:8504","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8504"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8797","reference_id":"RHSA-2024:8797","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8797"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8836","reference_id":"RHSA-2024:8836","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8836"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8838","reference_id":"RHSA-2024:8838","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8838"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8977","reference_id":"RHSA-2024:8977","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8977"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9450","reference_id":"RHSA-2024:9450","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9450"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9451","reference_id":"RHSA-2024:9451","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9451"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9468","reference_id":"RHSA-2024:9468","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9468"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:1750","reference_id":"RHSA-2025:1750","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:1750"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"},{"reference_url":"https://usn.ubuntu.com/7015-2/","reference_id":"USN-7015-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-2/"},{"reference_url":"https://usn.ubuntu.com/7015-5/","reference_id":"USN-7015-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-5/"},{"reference_url":"https://usn.ubuntu.com/7488-1/","reference_id":"USN-7488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7488-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936202?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936203?format=json","purl":"pkg:deb/debian/pypy3@7.3.18%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.18%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-6232"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7s7y-9bw5-m3ep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31956?format=json","vulnerability_id":"VCID-8a7h-5rn5-gubx","summary":"A vulnerability has been discovered in GNAT Ada Suite which can lead to remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27619.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27619.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27619","reference_id":"","reference_type":"","scores":[{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70366","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70359","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70368","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70224","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.7024","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70217","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70264","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70279","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70302","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70288","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70275","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70316","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70325","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70306","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00686","scoring_system":"epss","scoring_elements":"0.7165","published_at":"2026-04-01T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27619"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889886","reference_id":"1889886","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889886"},{"reference_url":"https://security.gentoo.org/glsa/202402-04","reference_id":"GLSA-202402-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202402-04"},{"reference_url":"https://security.gentoo.org/glsa/202409-12","reference_id":"GLSA-202409-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1633","reference_id":"RHSA-2021:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3252","reference_id":"RHSA-2021:3252","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3252"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4151","reference_id":"RHSA-2021:4151","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4151"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4162","reference_id":"RHSA-2021:4162","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4162"},{"reference_url":"https://usn.ubuntu.com/4754-1/","reference_id":"USN-4754-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4754-1/"},{"reference_url":"https://usn.ubuntu.com/4754-3/","reference_id":"USN-4754-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4754-3/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936187?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2020-27619"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8a7h-5rn5-gubx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64940?format=json","vulnerability_id":"VCID-8b19-pezx-6bcd","summary":"cpython: wsgiref.headers.Headers allows header newline injection in Python","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0865.json","reference_id":"","reference_type":"","scores":[{"value":"4.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0865.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-0865","reference_id":"","reference_type":"","scores":[{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32822","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32327","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.3241","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32526","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32709","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32731","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32692","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32679","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32727","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32858","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32719","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32755","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32753","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0865"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126739","reference_id":"1126739","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126739"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126740","reference_id":"1126740","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126740"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126741","reference_id":"1126741","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126741"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126742","reference_id":"1126742","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126742"},{"reference_url":"https://github.com/python/cpython/issues/143916","reference_id":"143916","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/issues/143916"},{"reference_url":"https://github.com/python/cpython/pull/143917","reference_id":"143917","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/pull/143917"},{"reference_url":"https://github.com/python/cpython/commit/22e4d55285cee52bc4dbe061324e5f30bd4dee58","reference_id":"22e4d55285cee52bc4dbe061324e5f30bd4dee58","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/22e4d55285cee52bc4dbe061324e5f30bd4dee58"},{"reference_url":"https://github.com/python/cpython/commit/23e3c0ae867cca0130e441e776c9955b9027c510","reference_id":"23e3c0ae867cca0130e441e776c9955b9027c510","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/23e3c0ae867cca0130e441e776c9955b9027c510"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431367","reference_id":"2431367","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431367"},{"reference_url":"https://github.com/python/cpython/commit/286e3ac39984fe85a17f4ab39c64d382137aae5f","reference_id":"286e3ac39984fe85a17f4ab39c64d382137aae5f","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/286e3ac39984fe85a17f4ab39c64d382137aae5f"},{"reference_url":"https://github.com/python/cpython/commit/2f840249550e082dc351743f474ba56da10478d2","reference_id":"2f840249550e082dc351743f474ba56da10478d2","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/2f840249550e082dc351743f474ba56da10478d2"},{"reference_url":"https://github.com/python/cpython/commit/4802b96a2cde58570c24c13ef3289490980961c5","reference_id":"4802b96a2cde58570c24c13ef3289490980961c5","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/4802b96a2cde58570c24c13ef3289490980961c5"},{"reference_url":"https://github.com/python/cpython/commit/66da7bf6fe7b81e3ecc9c0a25bd47d4616c8d1a6","reference_id":"66da7bf6fe7b81e3ecc9c0a25bd47d4616c8d1a6","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/66da7bf6fe7b81e3ecc9c0a25bd47d4616c8d1a6"},{"reference_url":"https://github.com/python/cpython/commit/83ecd18779f286d872f68bfce175651e407d9fff","reference_id":"83ecd18779f286d872f68bfce175651e407d9fff","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/83ecd18779f286d872f68bfce175651e407d9fff"},{"reference_url":"https://github.com/python/cpython/commit/8bb044d29310bb05d15086cdaa8bf64867d61a97","reference_id":"8bb044d29310bb05d15086cdaa8bf64867d61a97","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/8bb044d29310bb05d15086cdaa8bf64867d61a97"},{"reference_url":"https://github.com/python/cpython/commit/bfba660085767f8c2d582134e9d511a85eda04cf","reference_id":"bfba660085767f8c2d582134e9d511a85eda04cf","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/bfba660085767f8c2d582134e9d511a85eda04cf"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/BJ6QPHNSHJTS3A7CFV6IBMCAP2DWRVNT/","reference_id":"BJ6QPHNSHJTS3A7CFV6IBMCAP2DWRVNT","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/BJ6QPHNSHJTS3A7CFV6IBMCAP2DWRVNT/"},{"reference_url":"https://github.com/python/cpython/commit/c592227ffb48679af9845a45dbb0875d975bb219","reference_id":"c592227ffb48679af9845a45dbb0875d975bb219","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/c592227ffb48679af9845a45dbb0875d975bb219"},{"reference_url":"https://github.com/python/cpython/commit/e4846a93ac07a8ae9aa18203af0dd13d6e7a6995","reference_id":"e4846a93ac07a8ae9aa18203af0dd13d6e7a6995","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/e4846a93ac07a8ae9aa18203af0dd13d6e7a6995"},{"reference_url":"https://github.com/python/cpython/commit/f7fceed79ca1bceae8dbe5ba5bc8928564da7211","reference_id":"f7fceed79ca1bceae8dbe5ba5bc8928564da7211","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:22Z/"}],"url":"https://github.com/python/cpython/commit/f7fceed79ca1bceae8dbe5ba5bc8928564da7211"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2128","reference_id":"RHSA-2026:2128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4168","reference_id":"RHSA-2026:4168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4463","reference_id":"RHSA-2026:4463","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4463"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4473","reference_id":"RHSA-2026:4473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4713","reference_id":"RHSA-2026:4713","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4713"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4943","reference_id":"RHSA-2026:4943","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4943"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5606","reference_id":"RHSA-2026:5606","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5606"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6253","reference_id":"RHSA-2026:6253","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6253"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/8018-1/","reference_id":"USN-8018-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-1/"},{"reference_url":"https://usn.ubuntu.com/8018-2/","reference_id":"USN-8018-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-2/"},{"reference_url":"https://usn.ubuntu.com/8018-3/","reference_id":"USN-8018-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-3/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-0865"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8b19-pezx-6bcd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/66416?format=json","vulnerability_id":"VCID-8dtv-379a-wqfs","summary":"cpython: Excessive read buffering DoS in http.client","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13836.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13836.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-13836","reference_id":"","reference_type":"","scores":[{"value":"0.001","scoring_system":"epss","scoring_elements":"0.2743","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41613","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41585","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41406","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41411","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41518","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41594","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.4162","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41574","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41587","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41621","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41599","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41589","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41539","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-13836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13836"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126783","reference_id":"1126783","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126783"},{"reference_url":"https://github.com/python/cpython/issues/119451","reference_id":"119451","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/"}],"url":"https://github.com/python/cpython/issues/119451"},{"reference_url":"https://github.com/python/cpython/pull/119454","reference_id":"119454","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/"}],"url":"https://github.com/python/cpython/pull/119454"},{"reference_url":"https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628","reference_id":"14b1fdb0a94b96f86fc7b86671ea9582b8676628","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/"}],"url":"https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2418078","reference_id":"2418078","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2418078"},{"reference_url":"https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15","reference_id":"289f29b0fe38baf2d7cb5854f4bb573cc34a6a15","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/"}],"url":"https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15"},{"reference_url":"https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155","reference_id":"4ce27904b597c77d74dd93f2c912676021a99155","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/"}],"url":"https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155"},{"reference_url":"https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5","reference_id":"5a4c4a033a4a54481be6870aa1896fad732555b5","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/"}],"url":"https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5"},{"reference_url":"https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0","reference_id":"5dc101675fd22918facbbe0fecdc821502beaaf0","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/"}],"url":"https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0"},{"reference_url":"https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c","reference_id":"afc40bdd3dd71f343fd9016f6d8eebbacbd6587c","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/"}],"url":"https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/","reference_id":"OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1374","reference_id":"RHSA-2026:1374","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1408","reference_id":"RHSA-2026:1408","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1408"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1410","reference_id":"RHSA-2026:1410","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1410"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1736","reference_id":"RHSA-2026:1736","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1736"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1828","reference_id":"RHSA-2026:1828","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1828"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1892","reference_id":"RHSA-2026:1892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1893","reference_id":"RHSA-2026:1893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1922","reference_id":"RHSA-2026:1922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2084","reference_id":"RHSA-2026:2084","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2084"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2233","reference_id":"RHSA-2026:2233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2419","reference_id":"RHSA-2026:2419","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2419"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2563","reference_id":"RHSA-2026:2563","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2563"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3897","reference_id":"RHSA-2026:3897","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3897"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3900","reference_id":"RHSA-2026:3900","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3900"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4943","reference_id":"RHSA-2026:4943","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4943"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8746","reference_id":"RHSA-2026:8746","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8747","reference_id":"RHSA-2026:8747","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8747"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8748","reference_id":"RHSA-2026:8748","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8748"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/7951-1/","reference_id":"USN-7951-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7951-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-13836"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8dtv-379a-wqfs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/75055?format=json","vulnerability_id":"VCID-8hug-fhhb-sbgt","summary":"python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5642.json","reference_id":"","reference_type":"","scores":[{"value":"2.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5642.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5642","reference_id":"","reference_type":"","scores":[{"value":"0.00161","scoring_system":"epss","scoring_elements":"0.36996","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00161","scoring_system":"epss","scoring_elements":"0.36944","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00161","scoring_system":"epss","scoring_elements":"0.3697","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00161","scoring_system":"epss","scoring_elements":"0.37004","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40268","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40497","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40548","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41184","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41002","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41113","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41186","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41215","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.40987","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41214","published_at":"2026-04-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5642"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5642","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5642"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/121227","reference_id":"121227","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/"}],"url":"https://github.com/python/cpython/issues/121227"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2294682","reference_id":"2294682","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2294682"},{"reference_url":"https://github.com/python/cpython/pull/23014","reference_id":"23014","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/"}],"url":"https://github.com/python/cpython/pull/23014"},{"reference_url":"https://github.com/python/cpython/commit/39258d3595300bc7b952854c915f63ae2d4b9c3e","reference_id":"39258d3595300bc7b952854c915f63ae2d4b9c3e","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/"}],"url":"https://github.com/python/cpython/commit/39258d3595300bc7b952854c915f63ae2d4b9c3e"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/06/28/4","reference_id":"4","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/06/28/4"},{"reference_url":"https://github.com/python/cpython/commit/a2cdbb6e8188ba9ba8b356b28d91bff60e86fe31","reference_id":"a2cdbb6e8188ba9ba8b356b28d91bff60e86fe31","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/"}],"url":"https://github.com/python/cpython/commit/a2cdbb6e8188ba9ba8b356b28d91bff60e86fe31"},{"reference_url":"https://jbp.io/2024/06/27/cve-2024-5535-openssl-memory-safety.html","reference_id":"cve-2024-5535-openssl-memory-safety.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/"}],"url":"https://jbp.io/2024/06/27/cve-2024-5535-openssl-memory-safety.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240726-0005/","reference_id":"ntap-20240726-0005","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240726-0005/"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/PLP2JI3PJY33YG6P5BZYSSNU66HASXBQ/","reference_id":"PLP2JI3PJY33YG6P5BZYSSNU66HASXBQ","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/PLP2JI3PJY33YG6P5BZYSSNU66HASXBQ/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23342","reference_id":"RHSA-2025:23342","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0414","reference_id":"RHSA-2026:0414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0685","reference_id":"RHSA-2026:0685","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0685"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1652","reference_id":"RHSA-2026:1652","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1652"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936185?format=json","purl":"pkg:deb/debian/pypy3@7.3.10%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.10%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-5642"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8hug-fhhb-sbgt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31517?format=json","vulnerability_id":"VCID-8zdt-4q7m-t7ht","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4330.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4330.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4330","reference_id":"","reference_type":"","scores":[{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77068","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77214","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77097","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.7708","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77112","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77122","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77149","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77128","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77123","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77164","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77166","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77158","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77192","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01012","scoring_system":"epss","scoring_elements":"0.77199","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4330"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/135034","reference_id":"135034","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/issues/135034"},{"reference_url":"https://github.com/python/cpython/pull/135037","reference_id":"135037","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/pull/135037"},{"reference_url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da","reference_id":"19de092debb3d7e832e5672cc2f7b788d35951da","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370014","reference_id":"2370014","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370014"},{"reference_url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9","reference_id":"28463dba112af719df1e8b0391c46787ad756dd9","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9"},{"reference_url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a","reference_id":"3612d8f51741b11f36f8fb0494d79086bac9390a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"},{"reference_url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_id":"4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e"},{"reference_url":"https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f","reference_id":"52398e33eff261329a0180ac1d54f42f","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"},{"reference_url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a","reference_id":"9c1110ef6652687d7c55f590f909720eddde965a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a"},{"reference_url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_id":"9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"},{"reference_url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_id":"aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01"},{"reference_url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_id":"dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/","reference_id":"MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10026","reference_id":"RHSA-2025:10026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10028","reference_id":"RHSA-2025:10028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10031","reference_id":"RHSA-2025:10031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10128","reference_id":"RHSA-2025:10128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10136","reference_id":"RHSA-2025:10136","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10140","reference_id":"RHSA-2025:10140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10148","reference_id":"RHSA-2025:10148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10189","reference_id":"RHSA-2025:10189","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10189"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10399","reference_id":"RHSA-2025:10399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10399"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10484","reference_id":"RHSA-2025:10484","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10484"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10602","reference_id":"RHSA-2025:10602","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10602"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13267","reference_id":"RHSA-2025:13267","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13267"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9918","reference_id":"RHSA-2025:9918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9918"},{"reference_url":"https://usn.ubuntu.com/7583-1/","reference_id":"USN-7583-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7583-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936204?format=json","purl":"pkg:deb/debian/pypy3@7.3.20%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.20%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-4330"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8zdt-4q7m-t7ht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64939?format=json","vulnerability_id":"VCID-94n7-6q4s-3udv","summary":"cpython: Header injection via newlines in data URL mediatype in Python","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15282.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15282.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-15282","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13681","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13418","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13742","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13544","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13624","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13676","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13646","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13609","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13561","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13476","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13472","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13543","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13555","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13527","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-15282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15282"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/05356b1cc153108aaf27f3b72ce438af4aa218c0","reference_id":"05356b1cc153108aaf27f3b72ce438af4aa218c0","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/"}],"url":"https://github.com/python/cpython/commit/05356b1cc153108aaf27f3b72ce438af4aa218c0"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126779","reference_id":"1126779","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126779"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126780","reference_id":"1126780","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126780"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126781","reference_id":"1126781","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126781"},{"reference_url":"https://github.com/python/cpython/issues/143925","reference_id":"143925","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/"}],"url":"https://github.com/python/cpython/issues/143925"},{"reference_url":"https://github.com/python/cpython/pull/143926","reference_id":"143926","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/"}],"url":"https://github.com/python/cpython/pull/143926"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431366","reference_id":"2431366","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431366"},{"reference_url":"https://github.com/python/cpython/commit/34d76b00dabde81a793bd06dd8ecb057838c4b38","reference_id":"34d76b00dabde81a793bd06dd8ecb057838c4b38","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/"}],"url":"https://github.com/python/cpython/commit/34d76b00dabde81a793bd06dd8ecb057838c4b38"},{"reference_url":"https://github.com/python/cpython/commit/3f396ca9d7bbe2a50ea6b8c9b27c0082884d9f80","reference_id":"3f396ca9d7bbe2a50ea6b8c9b27c0082884d9f80","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/"}],"url":"https://github.com/python/cpython/commit/3f396ca9d7bbe2a50ea6b8c9b27c0082884d9f80"},{"reference_url":"https://github.com/python/cpython/commit/4ed11d3cd288e6b90196a15c5a825a45d318fe47","reference_id":"4ed11d3cd288e6b90196a15c5a825a45d318fe47","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/"}],"url":"https://github.com/python/cpython/commit/4ed11d3cd288e6b90196a15c5a825a45d318fe47"},{"reference_url":"https://github.com/python/cpython/commit/a35ca3be5842505dab74dc0b90b89cde0405017a","reference_id":"a35ca3be5842505dab74dc0b90b89cde0405017a","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/"}],"url":"https://github.com/python/cpython/commit/a35ca3be5842505dab74dc0b90b89cde0405017a"},{"reference_url":"https://github.com/python/cpython/commit/f25509e78e8be6ea73c811ac2b8c928c28841b9f","reference_id":"f25509e78e8be6ea73c811ac2b8c928c28841b9f","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/"}],"url":"https://github.com/python/cpython/commit/f25509e78e8be6ea73c811ac2b8c928c28841b9f"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10950","reference_id":"RHSA-2026:10950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/8018-1/","reference_id":"USN-8018-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-1/"},{"reference_url":"https://usn.ubuntu.com/8018-3/","reference_id":"USN-8018-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-3/"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/X66HL7SISGJT33J53OHXMZT4DFLMHVKF/","reference_id":"X66HL7SISGJT33J53OHXMZT4DFLMHVKF","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:21Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/X66HL7SISGJT33J53OHXMZT4DFLMHVKF/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-15282"],"risk_score":2.7,"exploitability":"0.5","weighted_severity":"5.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-94n7-6q4s-3udv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31510?format=json","vulnerability_id":"VCID-9nvp-aus1-9yed","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6923.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6923.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6923","reference_id":"","reference_type":"","scores":[{"value":"0.00204","scoring_system":"epss","scoring_elements":"0.42427","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46924","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46858","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46874","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.4685","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46868","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.4687","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46893","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46866","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46873","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46929","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55326","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55276","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6923"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6923","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6923"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147","reference_id":"06f28dc236708f72871c64d4bc4b4ea144c50147","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147"},{"reference_url":"https://github.com/python/cpython/commit/097633981879b3c9de9a1dd120d3aa585ecc2384","reference_id":"097633981879b3c9de9a1dd120d3aa585ecc2384","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/097633981879b3c9de9a1dd120d3aa585ecc2384"},{"reference_url":"https://github.com/python/cpython/issues/121650","reference_id":"121650","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/issues/121650"},{"reference_url":"https://github.com/python/cpython/pull/122233","reference_id":"122233","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/pull/122233"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302255","reference_id":"2302255","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302255"},{"reference_url":"https://github.com/python/cpython/commit/4766d1200fdf8b6728137aa2927a297e224d5fa7","reference_id":"4766d1200fdf8b6728137aa2927a297e224d5fa7","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/4766d1200fdf8b6728137aa2927a297e224d5fa7"},{"reference_url":"https://github.com/python/cpython/commit/4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0","reference_id":"4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0"},{"reference_url":"https://github.com/python/cpython/commit/b158a76ce094897c870fb6b3de62887b7ccc33f1","reference_id":"b158a76ce094897c870fb6b3de62887b7ccc33f1","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/b158a76ce094897c870fb6b3de62887b7ccc33f1"},{"reference_url":"https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6","reference_id":"f7be505d137a22528cb0fc004422c0081d5d90e6","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6"},{"reference_url":"https://github.com/python/cpython/commit/f7c0f09e69e950cf3c5ada9dbde93898eb975533","reference_id":"f7c0f09e69e950cf3c5ada9dbde93898eb975533","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/f7c0f09e69e950cf3c5ada9dbde93898eb975533"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW/","reference_id":"QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10135","reference_id":"RHSA-2024:10135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11109","reference_id":"RHSA-2024:11109","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5962","reference_id":"RHSA-2024:5962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6146","reference_id":"RHSA-2024:6146","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6146"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6163","reference_id":"RHSA-2024:6163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6179","reference_id":"RHSA-2024:6179","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6909","reference_id":"RHSA-2024:6909","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6909"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6915","reference_id":"RHSA-2024:6915","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6915"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6961","reference_id":"RHSA-2024:6961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6962","reference_id":"RHSA-2024:6962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6975","reference_id":"RHSA-2024:6975","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6975"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7137","reference_id":"RHSA-2024:7137","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7137"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7213","reference_id":"RHSA-2024:7213","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7213"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7374","reference_id":"RHSA-2024:7374","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7415","reference_id":"RHSA-2024:7415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7415"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8103","reference_id":"RHSA-2024:8103","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8103"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"},{"reference_url":"https://usn.ubuntu.com/7015-5/","reference_id":"USN-7015-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-5/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936202?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936203?format=json","purl":"pkg:deb/debian/pypy3@7.3.18%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.18%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-6923"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9nvp-aus1-9yed"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70893?format=json","vulnerability_id":"VCID-9sms-mhht-n3aq","summary":"python: Mishandling of comma during folding and unicode-encoding of email headers","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1795.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1795.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1795","reference_id":"","reference_type":"","scores":[{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.6923","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.6921","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.69212","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.7329","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73224","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73205","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73199","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73242","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73251","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73244","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73279","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73292","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00791","scoring_system":"epss","scoring_elements":"0.73886","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00873","scoring_system":"epss","scoring_elements":"0.75243","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1795"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1795","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1795"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48","reference_id":"09fab93c3d857496c0bd162797fab816c311ee48","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48"},{"reference_url":"https://github.com/python/cpython/issues/100884","reference_id":"100884","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/issues/100884"},{"reference_url":"https://github.com/python/cpython/pull/100885","reference_id":"100885","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/pull/100885"},{"reference_url":"https://github.com/python/cpython/pull/119099","reference_id":"119099","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/pull/119099"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2349061","reference_id":"2349061","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2349061"},{"reference_url":"https://github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593","reference_id":"70754d21c288535e86070ca7a6e90dcb670b8593","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593"},{"reference_url":"https://github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74","reference_id":"9148b77e0af91cdacaa7fe3dfac09635c3fe9a74","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74"},{"reference_url":"https://github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03d","reference_id":"a4ef689ce670684ec132204b1cd03720c8e0a03d","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03d"},{"reference_url":"https://github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090","reference_id":"d4df3c55e4c5513947f907f24766b34d2ae8c090","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/","reference_id":"MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/"},{"reference_url":"https://usn.ubuntu.com/7570-1/","reference_id":"USN-7570-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7570-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936202?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936203?format=json","purl":"pkg:deb/debian/pypy3@7.3.18%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.18%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-1795"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9sms-mhht-n3aq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64251?format=json","vulnerability_id":"VCID-9vcx-2fts-gkfw","summary":"cpython: Stack overflow parsing XML with deeply nested DTD content models","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4224.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4224.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4224","reference_id":"","reference_type":"","scores":[{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.0479","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.04831","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.04814","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.04869","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08589","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08479","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08627","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08625","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08602","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10059","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10149","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10092","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10171","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10191","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4224"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4224","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4224"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/145986","reference_id":"145986","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/"}],"url":"https://github.com/python/cpython/issues/145986"},{"reference_url":"https://github.com/python/cpython/pull/145987","reference_id":"145987","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/"}],"url":"https://github.com/python/cpython/pull/145987"},{"reference_url":"https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a","reference_id":"196edfb06a7458377d4d0f4b3cd41724c1f3bd4a","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/"}],"url":"https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448181","reference_id":"2448181","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448181"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/","reference_id":"5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/"},{"reference_url":"https://github.com/python/cpython/commit/642865ddf4b232da1f3b1f7abcfa3254c4bfe785","reference_id":"642865ddf4b232da1f3b1f7abcfa3254c4bfe785","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/"}],"url":"https://github.com/python/cpython/commit/642865ddf4b232da1f3b1f7abcfa3254c4bfe785"},{"reference_url":"https://github.com/python/cpython/commit/af856a7177326ac25d9f66cc6dd28b554d914fee","reference_id":"af856a7177326ac25d9f66cc6dd28b554d914fee","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/"}],"url":"https://github.com/python/cpython/commit/af856a7177326ac25d9f66cc6dd28b554d914fee"},{"reference_url":"https://github.com/python/cpython/commit/e0a8a6da90597a924b300debe045cdb4628ee1f3","reference_id":"e0a8a6da90597a924b300debe045cdb4628ee1f3","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/"}],"url":"https://github.com/python/cpython/commit/e0a8a6da90597a924b300debe045cdb4628ee1f3"},{"reference_url":"https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf532768","reference_id":"eb0e8be3a7e11b87d198a2c3af1ed0eccf532768","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-16T18:20:48Z/"}],"url":"https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf532768"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10950","reference_id":"RHSA-2026:10950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-4224"],"risk_score":2.7,"exploitability":"0.5","weighted_severity":"5.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9vcx-2fts-gkfw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/351472?format=json","vulnerability_id":"VCID-a2st-585f-uucu","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1502.json","reference_id":"","reference_type":"","scores":[{"value":"4.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1502.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-1502","reference_id":"","reference_type":"","scores":[{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12595","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.12681","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.1264","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17068","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17108","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17073","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.18841","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.18776","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.18821","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-1502"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1502","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1502"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69","reference_id":"05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/"}],"url":"https://github.com/python/cpython/commit/05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69"},{"reference_url":"https://github.com/python/cpython/issues/146211","reference_id":"146211","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/"}],"url":"https://github.com/python/cpython/issues/146211"},{"reference_url":"https://github.com/python/cpython/pull/146212","reference_id":"146212","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/"}],"url":"https://github.com/python/cpython/pull/146212"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2457409","reference_id":"2457409","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2457409"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3/","reference_id":"2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3/"},{"reference_url":"https://github.com/python/cpython/commit/b1cf9016335cb637c5a425032e8274a224f4b2ed","reference_id":"b1cf9016335cb637c5a425032e8274a224f4b2ed","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T16:08:30Z/"}],"url":"https://github.com/python/cpython/commit/b1cf9016335cb637c5a425032e8274a224f4b2ed"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10117","reference_id":"RHSA-2026:10117","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10117"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10950","reference_id":"RHSA-2026:10950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9228","reference_id":"RHSA-2026:9228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9228"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-1502"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a2st-585f-uucu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38942?format=json","vulnerability_id":"VCID-a8mv-mr3q-vygz","summary":"Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42919.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42919.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-42919","reference_id":"","reference_type":"","scores":[{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.09956","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10004","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.09902","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10026","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.09978","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.0998","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10002","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10042","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.11412","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.1157","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.11444","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.11443","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.11482","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.11523","published_at":"2026-04-24T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-42919"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42919","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42919"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2138705","reference_id":"2138705","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2138705"},{"reference_url":"https://github.com/python/cpython/issues/97514","reference_id":"97514","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://github.com/python/cpython/issues/97514"},{"reference_url":"https://github.com/python/cpython/issues/97514#issuecomment-1310277840","reference_id":"97514#issuecomment-1310277840","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://github.com/python/cpython/issues/97514#issuecomment-1310277840"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKGCQPIVHEAIJ77R3RSNSQWYBUDVWDKU/","reference_id":"FKGCQPIVHEAIJ77R3RSNSQWYBUDVWDKU","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKGCQPIVHEAIJ77R3RSNSQWYBUDVWDKU/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221209-0006/","reference_id":"ntap-20221209-0006","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221209-0006/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2LHWWEI5OBQ6RELULMVU6KMDYG4WZXH/","reference_id":"P2LHWWEI5OBQ6RELULMVU6KMDYG4WZXH","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2LHWWEI5OBQ6RELULMVU6KMDYG4WZXH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PI5DYIED6U26BGX5IRZWNCP6TY4M2ZGZ/","reference_id":"PI5DYIED6U26BGX5IRZWNCP6TY4M2ZGZ","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PI5DYIED6U26BGX5IRZWNCP6TY4M2ZGZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/","reference_id":"QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R6KGIRHSENZ4QAB234Z36HVIDTRJ3MFI/","reference_id":"R6KGIRHSENZ4QAB234Z36HVIDTRJ3MFI","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R6KGIRHSENZ4QAB234Z36HVIDTRJ3MFI/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/","reference_id":"RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8492","reference_id":"RHSA-2022:8492","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8492"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8493","reference_id":"RHSA-2022:8493","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8493"},{"reference_url":"https://usn.ubuntu.com/5713-1/","reference_id":"USN-5713-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5713-1/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://github.com/python/cpython/compare/v3.10.8...v3.10.9","reference_id":"v3.10.8...v3.10.9","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://github.com/python/cpython/compare/v3.10.8...v3.10.9"},{"reference_url":"https://github.com/python/cpython/compare/v3.9.15...v3.9.16","reference_id":"v3.9.15...v3.9.16","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://github.com/python/cpython/compare/v3.9.15...v3.9.16"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCRKBB5Y5EWTJUNC7LK665WO64DDXSTN/","reference_id":"VCRKBB5Y5EWTJUNC7LK665WO64DDXSTN","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCRKBB5Y5EWTJUNC7LK665WO64DDXSTN/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XX6LLAXGZVZ327REY6MDZRMMP47LJ53P/","reference_id":"XX6LLAXGZVZ327REY6MDZRMMP47LJ53P","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XX6LLAXGZVZ327REY6MDZRMMP47LJ53P/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936181?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2022-42919"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a8mv-mr3q-vygz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64945?format=json","vulnerability_id":"VCID-bn83-d2qp-9bfy","summary":"cpython: Missing character filtering in Python","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11468.json","reference_id":"","reference_type":"","scores":[{"value":"4.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11468.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11468","reference_id":"","reference_type":"","scores":[{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11821","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11561","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11863","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11649","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11734","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11787","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11797","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11759","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11733","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11597","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11595","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11718","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11676","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11637","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11468"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11468","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11468"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/003b8315669b9f08b1010a49071f73f15f818094","reference_id":"003b8315669b9f08b1010a49071f73f15f818094","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:23Z/"}],"url":"https://github.com/python/cpython/commit/003b8315669b9f08b1010a49071f73f15f818094"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126786","reference_id":"1126786","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126786"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126787","reference_id":"1126787","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126787"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126788","reference_id":"1126788","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126788"},{"reference_url":"https://github.com/python/cpython/issues/143935","reference_id":"143935","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:23Z/"}],"url":"https://github.com/python/cpython/issues/143935"},{"reference_url":"https://github.com/python/cpython/pull/143936","reference_id":"143936","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:23Z/"}],"url":"https://github.com/python/cpython/pull/143936"},{"reference_url":"https://github.com/python/cpython/commit/17d1490aa97bd6b98a42b1a9b324ead84e7fd8a2","reference_id":"17d1490aa97bd6b98a42b1a9b324ead84e7fd8a2","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:23Z/"}],"url":"https://github.com/python/cpython/commit/17d1490aa97bd6b98a42b1a9b324ead84e7fd8a2"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431375","reference_id":"2431375","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431375"},{"reference_url":"https://github.com/python/cpython/commit/61614a5e5056e4f61ced65008d4576f3df34acb6","reference_id":"61614a5e5056e4f61ced65008d4576f3df34acb6","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:23Z/"}],"url":"https://github.com/python/cpython/commit/61614a5e5056e4f61ced65008d4576f3df34acb6"},{"reference_url":"https://github.com/python/cpython/commit/a76e4cd62dd68e7cbe86e37e6ed988495a646b66","reference_id":"a76e4cd62dd68e7cbe86e37e6ed988495a646b66","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:23Z/"}],"url":"https://github.com/python/cpython/commit/a76e4cd62dd68e7cbe86e37e6ed988495a646b66"},{"reference_url":"https://github.com/python/cpython/commit/e9970f077240c7c670e8a6fc6662f2b30d3b6ad0","reference_id":"e9970f077240c7c670e8a6fc6662f2b30d3b6ad0","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:23Z/"}],"url":"https://github.com/python/cpython/commit/e9970f077240c7c670e8a6fc6662f2b30d3b6ad0"},{"reference_url":"https://github.com/python/cpython/commit/f738386838021c762efea6c9802c82de65e87796","reference_id":"f738386838021c762efea6c9802c82de65e87796","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:23Z/"}],"url":"https://github.com/python/cpython/commit/f738386838021c762efea6c9802c82de65e87796"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/FELSEOLBI2QR6YLG6Q7VYF7FWSGQTKLI/","reference_id":"FELSEOLBI2QR6YLG6Q7VYF7FWSGQTKLI","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:23Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/FELSEOLBI2QR6YLG6Q7VYF7FWSGQTKLI/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/8018-1/","reference_id":"USN-8018-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-11468"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bn83-d2qp-9bfy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38829?format=json","vulnerability_id":"VCID-bqp2-x383-xqfh","summary":"Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-20107.json","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-20107.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-20107","reference_id":"","reference_type":"","scores":[{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75672","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75675","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75706","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75685","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75719","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.7573","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75754","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75735","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75729","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75767","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.7577","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75755","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75794","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.758","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00905","scoring_system":"epss","scoring_elements":"0.75812","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-20107"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-20107","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-20107"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075390","reference_id":"2075390","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2075390"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6457","reference_id":"RHSA-2022:6457","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6457"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6766","reference_id":"RHSA-2022:6766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7581","reference_id":"RHSA-2022:7581","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7581"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7592","reference_id":"RHSA-2022:7592","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7592"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7593","reference_id":"RHSA-2022:7593","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7593"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8353","reference_id":"RHSA-2022:8353","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8353"},{"reference_url":"https://usn.ubuntu.com/5519-1/","reference_id":"USN-5519-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5519-1/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936181?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2015-20107"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bqp2-x383-xqfh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80106?format=json","vulnerability_id":"VCID-ct6h-d1eh-7bgj","summary":"python: urllib: Regular expression DoS in AbstractBasicAuthHandler","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3733.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3733.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3733","reference_id":"","reference_type":"","scores":[{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.70986","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.70978","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.70988","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00666","scoring_system":"epss","scoring_elements":"0.71216","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00666","scoring_system":"epss","scoring_elements":"0.71189","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00666","scoring_system":"epss","scoring_elements":"0.71198","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73324","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73361","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73341","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73333","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73376","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73383","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73377","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73337","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73288","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3733"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3733","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3733"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1995234","reference_id":"1995234","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1995234"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4057","reference_id":"RHSA-2021:4057","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4057"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4160","reference_id":"RHSA-2021:4160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1663","reference_id":"RHSA-2022:1663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1663"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1764","reference_id":"RHSA-2022:1764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1821","reference_id":"RHSA-2022:1821","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1821"},{"reference_url":"https://usn.ubuntu.com/5083-1/","reference_id":"USN-5083-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5083-1/"},{"reference_url":"https://usn.ubuntu.com/5199-1/","reference_id":"USN-5199-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5199-1/"},{"reference_url":"https://usn.ubuntu.com/5200-1/","reference_id":"USN-5200-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5200-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936187?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2021-3733"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ct6h-d1eh-7bgj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78472?format=json","vulnerability_id":"VCID-dexx-3ssz-nqfg","summary":"python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27043.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27043.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-27043","reference_id":"","reference_type":"","scores":[{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.38839","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39083","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.38561","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.38649","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.38674","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39069","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39099","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39044","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39064","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39102","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39089","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39074","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39021","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39103","published_at":"2026-04-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-27043"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27043","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27043"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/102988","reference_id":"102988","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://github.com/python/cpython/issues/102988"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059298","reference_id":"1059298","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059298"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072179","reference_id":"1072179","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072179"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196183","reference_id":"2196183","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196183"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV/","reference_id":"4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC/","reference_id":"75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH/","reference_id":"ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW/","reference_id":"BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW/"},{"reference_url":"https://python-security.readthedocs.io/vuln/email-parseaddr-realname.html","reference_id":"email-parseaddr-realname.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://python-security.readthedocs.io/vuln/email-parseaddr-realname.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N/","reference_id":"HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z/","reference_id":"N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3/","reference_id":"NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230601-0003/","reference_id":"ntap-20230601-0003","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230601-0003/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW/","reference_id":"ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC/","reference_id":"P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH/","reference_id":"P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5/","reference_id":"PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J/","reference_id":"PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J/"},{"reference_url":"http://python.org","reference_id":"python.org","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"http://python.org"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QDRDDPDN3VFIYXJIYEABY6USX5EU66AG/","reference_id":"QDRDDPDN3VFIYXJIYEABY6USX5EU66AG","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QDRDDPDN3VFIYXJIYEABY6USX5EU66AG/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC/","reference_id":"RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0256","reference_id":"RHSA-2024:0256","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0256"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0430","reference_id":"RHSA-2024:0430","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0430"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0454","reference_id":"RHSA-2024:0454","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0454"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0466","reference_id":"RHSA-2024:0466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0466"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0586","reference_id":"RHSA-2024:0586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0586"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1383","reference_id":"RHSA-2024:1383","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1383"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2292","reference_id":"RHSA-2024:2292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2985","reference_id":"RHSA-2024:2985","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3062","reference_id":"RHSA-2024:3062","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3062"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ/","reference_id":"SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR/","reference_id":"SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR/"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"},{"reference_url":"https://usn.ubuntu.com/7015-3/","reference_id":"USN-7015-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-3/"},{"reference_url":"https://usn.ubuntu.com/7015-4/","reference_id":"USN-7015-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-4/"},{"reference_url":"https://usn.ubuntu.com/7015-7/","reference_id":"USN-7015-7","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-7/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP/","reference_id":"VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS/","reference_id":"XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YQVY5C5REXWJIORJIL2FIL3ALOEJEF72/","reference_id":"YQVY5C5REXWJIORJIL2FIL3ALOEJEF72","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YQVY5C5REXWJIORJIL2FIL3ALOEJEF72/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936186?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936199?format=json","purl":"pkg:deb/debian/pypy3@7.3.17%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.17%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2023-27043"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dexx-3ssz-nqfg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31513?format=json","vulnerability_id":"VCID-dnv8-yrd6-c7cv","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8088.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8088.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8088","reference_id":"","reference_type":"","scores":[{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.4575","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45809","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45799","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45924","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.4593","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45876","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.459","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45869","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45877","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45881","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45825","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45875","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45853","published_at":"2026-04-02T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8088"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8088","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8088"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/0aa1ee22ab6e204e9d3d0e9dd63ea648ed691ef1","reference_id":"0aa1ee22ab6e204e9d3d0e9dd63ea648ed691ef1","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/0aa1ee22ab6e204e9d3d0e9dd63ea648ed691ef1"},{"reference_url":"https://github.com/python/cpython/issues/122905","reference_id":"122905","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/issues/122905"},{"reference_url":"https://github.com/python/cpython/pull/122906","reference_id":"122906","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/pull/122906"},{"reference_url":"https://github.com/python/cpython/issues/123270","reference_id":"123270","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/issues/123270"},{"reference_url":"https://github.com/python/cpython/commit/2231286d78d328c2f575e0b05b16fe447d1656d6","reference_id":"2231286d78d328c2f575e0b05b16fe447d1656d6","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/2231286d78d328c2f575e0b05b16fe447d1656d6"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2307370","reference_id":"2307370","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2307370"},{"reference_url":"https://github.com/python/cpython/commit/795f2597a4be988e2bb19b69ff9958e981cb894e","reference_id":"795f2597a4be988e2bb19b69ff9958e981cb894e","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/795f2597a4be988e2bb19b69ff9958e981cb894e"},{"reference_url":"https://github.com/python/cpython/commit/7bc367e464ce50b956dd232c1dfa1cad4e7fb814","reference_id":"7bc367e464ce50b956dd232c1dfa1cad4e7fb814","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/7bc367e464ce50b956dd232c1dfa1cad4e7fb814"},{"reference_url":"https://github.com/python/cpython/commit/7e8883a3f04d308302361aeffc73e0e9837f19d4","reference_id":"7e8883a3f04d308302361aeffc73e0e9837f19d4","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/7e8883a3f04d308302361aeffc73e0e9837f19d4"},{"reference_url":"https://github.com/python/cpython/commit/8c7348939d8a3ecd79d630075f6be1b0c5b41f64","reference_id":"8c7348939d8a3ecd79d630075f6be1b0c5b41f64","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/8c7348939d8a3ecd79d630075f6be1b0c5b41f64"},{"reference_url":"https://github.com/python/cpython/commit/95b073bddefa6243effa08e131e297c0383e7f6a","reference_id":"95b073bddefa6243effa08e131e297c0383e7f6a","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/95b073bddefa6243effa08e131e297c0383e7f6a"},{"reference_url":"https://github.com/python/cpython/commit/962055268ed4f2ca1d717bfc8b6385de50a23ab7","reference_id":"962055268ed4f2ca1d717bfc8b6385de50a23ab7","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/962055268ed4f2ca1d717bfc8b6385de50a23ab7"},{"reference_url":"https://github.com/python/cpython/commit/9cd03263100ddb1657826cc4a71470786cab3932","reference_id":"9cd03263100ddb1657826cc4a71470786cab3932","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/9cd03263100ddb1657826cc4a71470786cab3932"},{"reference_url":"https://github.com/python/cpython/commit/dcc5182f27c1500006a1ef78e10613bb45788dea","reference_id":"dcc5182f27c1500006a1ef78e10613bb45788dea","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/dcc5182f27c1500006a1ef78e10613bb45788dea"},{"reference_url":"https://github.com/python/cpython/commit/e0264a61119d551658d9445af38323ba94fc16db","reference_id":"e0264a61119d551658d9445af38323ba94fc16db","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/e0264a61119d551658d9445af38323ba94fc16db"},{"reference_url":"https://github.com/python/cpython/commit/fc0b8259e693caa8400fa8b6ac1e494e47ea7798","reference_id":"fc0b8259e693caa8400fa8b6ac1e494e47ea7798","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/fc0b8259e693caa8400fa8b6ac1e494e47ea7798"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/GNFCKVI4TCATKQLALJ5SN4L4CSPSMILU/","reference_id":"GNFCKVI4TCATKQLALJ5SN4L4CSPSMILU","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/GNFCKVI4TCATKQLALJ5SN4L4CSPSMILU/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5962","reference_id":"RHSA-2024:5962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6163","reference_id":"RHSA-2024:6163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6961","reference_id":"RHSA-2024:6961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6962","reference_id":"RHSA-2024:6962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9190","reference_id":"RHSA-2024:9190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9192","reference_id":"RHSA-2024:9192","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9192"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9371","reference_id":"RHSA-2024:9371","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9371"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936203?format=json","purl":"pkg:deb/debian/pypy3@7.3.18%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.18%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-8088"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dnv8-yrd6-c7cv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80107?format=json","vulnerability_id":"VCID-e6rs-jwvu-jycd","summary":"python: urllib: HTTP client possible infinite loop on a 100 Continue response","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3737.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3737.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3737","reference_id":"","reference_type":"","scores":[{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30825","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30821","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30954","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30384","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30466","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30583","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30749","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30832","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.31001","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30818","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30876","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30906","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30909","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30866","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30852","published_at":"2026-04-16T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3737"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3737","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3737"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1995162","reference_id":"1995162","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1995162"},{"reference_url":"https://github.com/python/cpython/pull/25916","reference_id":"25916","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://github.com/python/cpython/pull/25916"},{"reference_url":"https://github.com/python/cpython/pull/26503","reference_id":"26503","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://github.com/python/cpython/pull/26503"},{"reference_url":"https://ubuntu.com/security/CVE-2021-3737","reference_id":"CVE-2021-3737","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://ubuntu.com/security/CVE-2021-3737"},{"reference_url":"https://bugs.python.org/issue44022","reference_id":"issue44022","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://bugs.python.org/issue44022"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html","reference_id":"msg00024.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html","reference_id":"msg00039.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220407-0009/","reference_id":"ntap-20220407-0009","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220407-0009/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4160","reference_id":"RHSA-2021:4160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1663","reference_id":"RHSA-2022:1663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1663"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1764","reference_id":"RHSA-2022:1764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1821","reference_id":"RHSA-2022:1821","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1821"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1986","reference_id":"RHSA-2022:1986","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1986"},{"reference_url":"https://python-security.readthedocs.io/vuln/urllib-100-continue-loop.html","reference_id":"urllib-100-continue-loop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://python-security.readthedocs.io/vuln/urllib-100-continue-loop.html"},{"reference_url":"https://usn.ubuntu.com/5083-1/","reference_id":"USN-5083-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5083-1/"},{"reference_url":"https://usn.ubuntu.com/5199-1/","reference_id":"USN-5199-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5199-1/"},{"reference_url":"https://usn.ubuntu.com/5200-1/","reference_id":"USN-5200-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5200-1/"},{"reference_url":"https://usn.ubuntu.com/5201-1/","reference_id":"USN-5201-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5201-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936186?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936191?format=json","purl":"pkg:deb/debian/pypy3@7.3.8%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.8%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2021-3737"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e6rs-jwvu-jycd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/71919?format=json","vulnerability_id":"VCID-e6sb-bh7v-9ugg","summary":"python: cpython: URL parser allowed square brackets in domain names","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0938.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0938.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-0938","reference_id":"","reference_type":"","scores":[{"value":"0.01412","scoring_system":"epss","scoring_elements":"0.80562","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0148","scoring_system":"epss","scoring_elements":"0.81064","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0148","scoring_system":"epss","scoring_elements":"0.81049","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0148","scoring_system":"epss","scoring_elements":"0.81057","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81448","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81482","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81489","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81426","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81501","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.8148","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81474","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81446","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01728","scoring_system":"epss","scoring_elements":"0.82481","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01728","scoring_system":"epss","scoring_elements":"0.8248","published_at":"2026-04-16T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-0938"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0938","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0938"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/105704","reference_id":"105704","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/issues/105704"},{"reference_url":"https://github.com/python/cpython/pull/129418","reference_id":"129418","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/pull/129418"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2343237","reference_id":"2343237","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2343237"},{"reference_url":"https://github.com/python/cpython/commit/526617ed68cde460236c973e5d0a8bad4de896ba","reference_id":"526617ed68cde460236c973e5d0a8bad4de896ba","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/526617ed68cde460236c973e5d0a8bad4de896ba"},{"reference_url":"https://github.com/python/cpython/commit/90e526ae67b172ed7c6c56e7edad36263b0f9403","reference_id":"90e526ae67b172ed7c6c56e7edad36263b0f9403","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/90e526ae67b172ed7c6c56e7edad36263b0f9403"},{"reference_url":"https://github.com/python/cpython/commit/a7084f6075c9595ba60119ce8c62f1496f50c568","reference_id":"a7084f6075c9595ba60119ce8c62f1496f50c568","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/a7084f6075c9595ba60119ce8c62f1496f50c568"},{"reference_url":"https://github.com/python/cpython/commit/b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab","reference_id":"b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab"},{"reference_url":"https://github.com/python/cpython/commit/d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a","reference_id":"d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a"},{"reference_url":"https://github.com/python/cpython/commit/ff4e5c25666f63544071a6b075ae8b25c98b7a32","reference_id":"ff4e5c25666f63544071a6b075ae8b25c98b7a32","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/ff4e5c25666f63544071a6b075ae8b25c98b7a32"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB/","reference_id":"K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:6977","reference_id":"RHSA-2025:6977","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:6977"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7107","reference_id":"RHSA-2025:7107","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:7107"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7109","reference_id":"RHSA-2025:7109","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:7109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:8385","reference_id":"RHSA-2025:8385","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:8385"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5588","reference_id":"RHSA-2026:5588","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5588"},{"reference_url":"https://usn.ubuntu.com/7280-1/","reference_id":"USN-7280-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7280-1/"},{"reference_url":"https://usn.ubuntu.com/7280-2/","reference_id":"USN-7280-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7280-2/"},{"reference_url":"https://usn.ubuntu.com/7280-3/","reference_id":"USN-7280-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7280-3/"},{"reference_url":"https://usn.ubuntu.com/7348-1/","reference_id":"USN-7348-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-1/"},{"reference_url":"https://usn.ubuntu.com/7348-2/","reference_id":"USN-7348-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936202?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936205?format=json","purl":"pkg:deb/debian/pypy3@7.3.18%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.18%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-0938"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e6sb-bh7v-9ugg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69414?format=json","vulnerability_id":"VCID-emaw-jmek-9bcy","summary":"cpython: Python HTMLParser quadratic complexity","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6069.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6069.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-6069","reference_id":"","reference_type":"","scores":[{"value":"0.00283","scoring_system":"epss","scoring_elements":"0.51588","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.5389","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53842","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53844","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53818","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53792","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53873","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75166","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75086","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75123","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.7513","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.7512","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75159","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75162","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-6069"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6069","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6069"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109376","reference_id":"1109376","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109376"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118430","reference_id":"1118430","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118430"},{"reference_url":"https://github.com/python/cpython/issues/135462","reference_id":"135462","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/issues/135462"},{"reference_url":"https://github.com/python/cpython/pull/135464","reference_id":"135464","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/pull/135464"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2373234","reference_id":"2373234","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2373234"},{"reference_url":"https://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949","reference_id":"4455cbabf991e202185a25a631af206f60bbc949","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949"},{"reference_url":"https://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41","reference_id":"6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41"},{"reference_url":"https://github.com/python/cpython/commit/8d1b3dfa09135affbbf27fb8babcf3c11415df49","reference_id":"8d1b3dfa09135affbbf27fb8babcf3c11415df49","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/8d1b3dfa09135affbbf27fb8babcf3c11415df49"},{"reference_url":"https://github.com/python/cpython/commit/ab0893fd5c579d9cea30841680e6d35fc478afb5","reference_id":"ab0893fd5c579d9cea30841680e6d35fc478afb5","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/ab0893fd5c579d9cea30841680e6d35fc478afb5"},{"reference_url":"https://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b","reference_id":"d851f8e258c7328814943e923a7df81bca15df4b","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b"},{"reference_url":"https://github.com/python/cpython/commit/f3c6f882cddc8dc30320d2e73edf019e201394fc","reference_id":"f3c6f882cddc8dc30320d2e73edf019e201394fc","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/f3c6f882cddc8dc30320d2e73edf019e201394fc"},{"reference_url":"https://github.com/python/cpython/commit/fdc9d214c01cb4588f540cfa03726bbf2a33fc15","reference_id":"fdc9d214c01cb4588f540cfa03726bbf2a33fc15","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/fdc9d214c01cb4588f540cfa03726bbf2a33fc15"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/","reference_id":"K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23342","reference_id":"RHSA-2025:23342","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0414","reference_id":"RHSA-2026:0414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0685","reference_id":"RHSA-2026:0685","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0685"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1652","reference_id":"RHSA-2026:1652","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1652"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1858","reference_id":"RHSA-2026:1858","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1858"},{"reference_url":"https://usn.ubuntu.com/7710-1/","reference_id":"USN-7710-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7710-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936202?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-6069"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-emaw-jmek-9bcy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30515?format=json","vulnerability_id":"VCID-ewbq-2gm8-tyf5","summary":"Buffer overflow in sponge queue functions\n### Impact\n\nThe Keccak sponge function interface accepts partial inputs to be absorbed and partial outputs to be squeezed. A buffer can overflow when partial data with some specific sizes are queued, where at least one of them has a length of 2^32 - 200 bytes or more.\n\n### Patches\n\nYes, see commit [fdc6fef0](https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a).\n\n### Workarounds\n\nThe problem can be avoided by limiting the size of the partial input data (or partial output digest) below 2^32 - 200 bytes. Multiple calls to the queue system can be chained at a higher level to retain the original functionality. Alternatively, one can process the entire input (or produce the entire output) at once, avoiding the queuing functions altogether.\n\n### References\n\nSee [issue #105](https://github.com/XKCP/XKCP/issues/105) for more details.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37454.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37454.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37454","reference_id":"","reference_type":"","scores":[{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79915","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79935","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79943","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.7996","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79894","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.7994","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79931","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79903","published_at":"2026-04-07T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80444","published_at":"2026-04-16T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80499","published_at":"2026-04-29T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80482","published_at":"2026-04-26T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80475","published_at":"2026-04-24T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80449","published_at":"2026-04-21T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80446","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37454"},{"reference_url":"https://csrc.nist.gov/projects/hash-functions/sha-3-project","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://csrc.nist.gov/projects/hash-functions/sha-3-project"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31630","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31630"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37454","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37454"},{"reference_url":"https://eprint.iacr.org/2023/331","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://eprint.iacr.org/2023/331"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/johanns/sha3/commit/5f2e8118a62831911703c8753ff2435c3b5d7312","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/johanns/sha3/commit/5f2e8118a62831911703c8753ff2435c3b5d7312"},{"reference_url":"https://github.com/johanns/sha3/issues/17","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/johanns/sha3/issues/17"},{"reference_url":"https://github.com/rubysec/ruby-advisory-db/blob/master/gems/sha3/CVE-2022-37454.yml","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/rubysec/ruby-advisory-db/blob/master/gems/sha3/CVE-2022-37454.yml"},{"reference_url":"https://github.com/tiran/pysha3/issues/29","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/tiran/pysha3/issues/29"},{"reference_url":"https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a"},{"reference_url":"https://github.com/XKCP/XKCP/issues/105","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/XKCP/XKCP/issues/105"},{"reference_url":"https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":""},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/"},{"reference_url":"https://mouha.be/sha-3-buffer-overflow","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mouha.be/sha-3-buffer-overflow"},{"reference_url":"https://mouha.be/sha-3-buffer-overflow/","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://mouha.be/sha-3-buffer-overflow/"},{"reference_url":"https://news.ycombinator.com/item?id=33281106","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://news.ycombinator.com/item?id=33281106"},{"reference_url":"https://news.ycombinator.com/item?id=35050307","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://news.ycombinator.com/item?id=35050307"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-37454","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-37454"},{"reference_url":"https://security.gentoo.org/glsa/202305-02","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://security.gentoo.org/glsa/202305-02"},{"reference_url":"https://www.debian.org/security/2022/dsa-5267","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://www.debian.org/security/2022/dsa-5267"},{"reference_url":"https://www.debian.org/security/2022/dsa-5269","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://www.debian.org/security/2022/dsa-5269"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1023030","reference_id":"1023030","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1023030"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140200","reference_id":"2140200","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140200"},{"reference_url":"https://github.com/advisories/GHSA-6w4m-2xhg-2658","reference_id":"GHSA-6w4m-2xhg-2658","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-6w4m-2xhg-2658"},{"reference_url":"https://security.gentoo.org/glsa/202211-03","reference_id":"GLSA-202211-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202211-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0848","reference_id":"RHSA-2023:0848","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0848"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0965","reference_id":"RHSA-2023:0965","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0965"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2417","reference_id":"RHSA-2023:2417","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2417"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2903","reference_id":"RHSA-2023:2903","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2903"},{"reference_url":"https://usn.ubuntu.com/5717-1/","reference_id":"USN-5717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5717-1/"},{"reference_url":"https://usn.ubuntu.com/5767-1/","reference_id":"USN-5767-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5767-1/"},{"reference_url":"https://usn.ubuntu.com/5767-3/","reference_id":"USN-5767-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5767-3/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://usn.ubuntu.com/5930-1/","reference_id":"USN-5930-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5930-1/"},{"reference_url":"https://usn.ubuntu.com/5931-1/","reference_id":"USN-5931-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5931-1/"},{"reference_url":"https://usn.ubuntu.com/6524-1/","reference_id":"USN-6524-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6524-1/"},{"reference_url":"https://usn.ubuntu.com/6525-1/","reference_id":"USN-6525-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6525-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936195?format=json","purl":"pkg:deb/debian/pypy3@7.3.9%2Bdfsg-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.9%252Bdfsg-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2022-37454","GHSA-6w4m-2xhg-2658"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ewbq-2gm8-tyf5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/66621?format=json","vulnerability_id":"VCID-fcsb-dn49-47gy","summary":"python: Quadratic complexity in os.path.expandvars() with user-controlled template","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6075.json","reference_id":"","reference_type":"","scores":[{"value":"4.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6075.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-6075","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.05661","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.05701","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.0576","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.05734","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.05694","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08429","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08536","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08553","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08574","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08541","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08587","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.08414","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.08938","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-6075"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6075","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6075"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"2.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126777","reference_id":"1126777","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126777"},{"reference_url":"https://github.com/python/cpython/issues/136065","reference_id":"136065","reference_type":"","scores":[{"value":"1.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/"}],"url":"https://github.com/python/cpython/issues/136065"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2408891","reference_id":"2408891","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2408891"},{"reference_url":"https://github.com/python/cpython/commit/2e6150adccaaf5bd95d4c19dfd04a36e0b325d8c","reference_id":"2e6150adccaaf5bd95d4c19dfd04a36e0b325d8c","reference_type":"","scores":[{"value":"1.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/"}],"url":"https://github.com/python/cpython/commit/2e6150adccaaf5bd95d4c19dfd04a36e0b325d8c"},{"reference_url":"https://github.com/python/cpython/commit/5dceb93486176e6b4a6d9754491005113eb23427","reference_id":"5dceb93486176e6b4a6d9754491005113eb23427","reference_type":"","scores":[{"value":"1.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/"}],"url":"https://github.com/python/cpython/commit/5dceb93486176e6b4a6d9754491005113eb23427"},{"reference_url":"https://github.com/python/cpython/commit/631ba3407e3348ccd56ce5160c4fb2c5dc5f4d84","reference_id":"631ba3407e3348ccd56ce5160c4fb2c5dc5f4d84","reference_type":"","scores":[{"value":"1.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/"}],"url":"https://github.com/python/cpython/commit/631ba3407e3348ccd56ce5160c4fb2c5dc5f4d84"},{"reference_url":"https://github.com/python/cpython/commit/892747b4cf0f95ba8beb51c0d0658bfaa381ebca","reference_id":"892747b4cf0f95ba8beb51c0d0658bfaa381ebca","reference_type":"","scores":[{"value":"1.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/"}],"url":"https://github.com/python/cpython/commit/892747b4cf0f95ba8beb51c0d0658bfaa381ebca"},{"reference_url":"https://github.com/python/cpython/commit/9ab89c026aa9611c4b0b67c288b8303a480fe742","reference_id":"9ab89c026aa9611c4b0b67c288b8303a480fe742","reference_type":"","scores":[{"value":"1.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/"}],"url":"https://github.com/python/cpython/commit/9ab89c026aa9611c4b0b67c288b8303a480fe742"},{"reference_url":"https://github.com/python/cpython/commit/c8a5f3435c342964e0a432cc9fb448b7dbecd1ba","reference_id":"c8a5f3435c342964e0a432cc9fb448b7dbecd1ba","reference_type":"","scores":[{"value":"1.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/"}],"url":"https://github.com/python/cpython/commit/c8a5f3435c342964e0a432cc9fb448b7dbecd1ba"},{"reference_url":"https://github.com/python/cpython/commit/f029e8db626ddc6e3a3beea4eff511a71aaceb5c","reference_id":"f029e8db626ddc6e3a3beea4eff511a71aaceb5c","reference_type":"","scores":[{"value":"1.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/"}],"url":"https://github.com/python/cpython/commit/f029e8db626ddc6e3a3beea4eff511a71aaceb5c"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/IUP5QJ6D4KK6ULHOMPC7DPNKRYQTQNLA/","reference_id":"IUP5QJ6D4KK6ULHOMPC7DPNKRYQTQNLA","reference_type":"","scores":[{"value":"1.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/IUP5QJ6D4KK6ULHOMPC7DPNKRYQTQNLA/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23342","reference_id":"RHSA-2025:23342","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0414","reference_id":"RHSA-2026:0414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0685","reference_id":"RHSA-2026:0685","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0685"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10950","reference_id":"RHSA-2026:10950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1652","reference_id":"RHSA-2026:1652","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1652"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/7886-1/","reference_id":"USN-7886-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7886-1/"},{"reference_url":"https://usn.ubuntu.com/7886-2/","reference_id":"USN-7886-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7886-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-6075"],"risk_score":1.8,"exploitability":"0.5","weighted_severity":"3.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fcsb-dn49-47gy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/355029?format=json","vulnerability_id":"VCID-ftys-9k1s-mqd9","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3087","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14056","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3087"},{"reference_url":"https://github.com/python/cpython/issues/146581","reference_id":"146581","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-28T13:38:08Z/"}],"url":"https://github.com/python/cpython/issues/146581"},{"reference_url":"https://github.com/python/cpython/pull/146591","reference_id":"146591","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-28T13:38:08Z/"}],"url":"https://github.com/python/cpython/pull/146591"},{"reference_url":"https://github.com/python/cpython/commit/ab5ef98af693bded74a738570e81ea70abef2840","reference_id":"ab5ef98af693bded74a738570e81ea70abef2840","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-28T13:38:08Z/"}],"url":"https://github.com/python/cpython/commit/ab5ef98af693bded74a738570e81ea70abef2840"},{"reference_url":"https://github.com/python/cpython/commit/b01e594fbe754a960212f908d047294e880b52fd","reference_id":"b01e594fbe754a960212f908d047294e880b52fd","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-28T13:38:08Z/"}],"url":"https://github.com/python/cpython/commit/b01e594fbe754a960212f908d047294e880b52fd"},{"reference_url":"https://github.com/python/cpython/commit/fc829e88753858c8ac669594bf0093f44948c0f4","reference_id":"fc829e88753858c8ac669594bf0093f44948c0f4","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-28T13:38:08Z/"}],"url":"https://github.com/python/cpython/commit/fc829e88753858c8ac669594bf0093f44948c0f4"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/X6FXE5C6KDKOVNX3EC3DWD5RUPFWOZA4/","reference_id":"X6FXE5C6KDKOVNX3EC3DWD5RUPFWOZA4","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-28T13:38:08Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/X6FXE5C6KDKOVNX3EC3DWD5RUPFWOZA4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-3087"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ftys-9k1s-mqd9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/50259?format=json","vulnerability_id":"VCID-gvgx-eq9r-d3d2","summary":"Multiple vulnerabilities have been found in Python, the worst of\n    which could result in the arbitrary execution of code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26116.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26116.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-26116","reference_id":"","reference_type":"","scores":[{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75643","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75645","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75676","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75655","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.7569","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.757","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75725","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75706","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75699","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77213","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.7722","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77222","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77269","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77248","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77254","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-26116"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26116","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26116"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1883014","reference_id":"1883014","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1883014"},{"reference_url":"https://security.gentoo.org/glsa/202101-18","reference_id":"GLSA-202101-18","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202101-18"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4273","reference_id":"RHSA-2020:4273","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4285","reference_id":"RHSA-2020:4285","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4285"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4299","reference_id":"RHSA-2020:4299","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4299"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1633","reference_id":"RHSA-2021:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1761","reference_id":"RHSA-2021:1761","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1761"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1879","reference_id":"RHSA-2021:1879","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3366","reference_id":"RHSA-2021:3366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5235","reference_id":"RHSA-2022:5235","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5235"},{"reference_url":"https://usn.ubuntu.com/4581-1/","reference_id":"USN-4581-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4581-1/"},{"reference_url":"https://usn.ubuntu.com/4754-3/","reference_id":"USN-4754-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4754-3/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936184?format=json","purl":"pkg:deb/debian/pypy3@7.3.3%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.3%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2020-26116"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gvgx-eq9r-d3d2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79075?format=json","vulnerability_id":"VCID-h7z2-vc14-nfhq","summary":"python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10735.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10735.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-10735","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59705","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59691","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59724","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59731","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59716","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59685","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59693","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59707","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59726","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5971","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60314","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60339","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60307","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60237","published_at":"2026-04-01T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-10735"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1834423","reference_id":"1834423","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1834423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6766","reference_id":"RHSA-2022:6766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7323","reference_id":"RHSA-2022:7323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0833","reference_id":"RHSA-2023:0833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2763","reference_id":"RHSA-2023:2763","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2763"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2764","reference_id":"RHSA-2023:2764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0430","reference_id":"RHSA-2024:0430","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0430"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936186?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936185?format=json","purl":"pkg:deb/debian/pypy3@7.3.10%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.10%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2020-10735"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h7z2-vc14-nfhq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79859?format=json","vulnerability_id":"VCID-j8hj-k7wy-yfch","summary":"python: ftplib should not use the host from the PASV response","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4189.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4189.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4189","reference_id":"","reference_type":"","scores":[{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77691","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77547","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77554","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.7758","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.7756","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.7759","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77597","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77624","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77608","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77607","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77644","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77642","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77637","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77668","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77676","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4189"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4189","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4189"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e","reference_id":"0ab152c6b5d95caa2dc1a30fa96e10258b5f188e","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2036020","reference_id":"2036020","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2036020"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2021-4189","reference_id":"CVE-2021-4189","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2021-4189"},{"reference_url":"https://security-tracker.debian.org/tracker/CVE-2021-4189","reference_id":"CVE-2021-4189","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://security-tracker.debian.org/tracker/CVE-2021-4189"},{"reference_url":"https://python-security.readthedocs.io/vuln/ftplib-pasv.html","reference_id":"ftplib-pasv.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://python-security.readthedocs.io/vuln/ftplib-pasv.html"},{"reference_url":"https://bugs.python.org/issue43285","reference_id":"issue43285","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://bugs.python.org/issue43285"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html","reference_id":"msg00024.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html","reference_id":"msg00039.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221104-0004/","reference_id":"ntap-20221104-0004","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221104-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1663","reference_id":"RHSA-2022:1663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1663"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1821","reference_id":"RHSA-2022:1821","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1821"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1986","reference_id":"RHSA-2022:1986","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1986"},{"reference_url":"https://usn.ubuntu.com/5342-1/","reference_id":"USN-5342-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5342-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5342-2/","reference_id":"USN-USN-5342-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5342-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936187?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2021-4189"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j8hj-k7wy-yfch"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42644?format=json","vulnerability_id":"VCID-js5p-py72-2kga","summary":"Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0450","reference_id":"","reference_type":"","scores":[{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35454","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35411","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35409","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35384","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35338","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35429","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.34983","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35072","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35093","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35328","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.3538","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35392","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35352","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35374","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0450"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133","reference_id":"1070133","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133"},{"reference_url":"https://github.com/python/cpython/issues/109858","reference_id":"109858","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/issues/109858"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276525","reference_id":"2276525","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276525"},{"reference_url":"https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85","reference_id":"30fe5d853b56138dbec62432d370a1f99409fc85","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/03/20/5","reference_id":"5","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/03/20/5"},{"reference_url":"https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba","reference_id":"66363b9a7b9fe7c99eba3a185b74c5fdbf842eba","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba"},{"reference_url":"https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675","reference_id":"70497218351ba44bffc8b571201ecb5652d84675","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675"},{"reference_url":"https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51","reference_id":"a2c59992e9e8d35baba9695eb186ad6c6ff85c51","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51"},{"reference_url":"https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549","reference_id":"a956e510f6336d5ae111ba429a61c3ade30a7549","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549"},{"reference_url":"https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183","reference_id":"d05bac0b74153beb541b88b4fca33bf053990183","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183"},{"reference_url":"https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b","reference_id":"fa181fcf2156f703347b03a3b1966ce47be8ab3b","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b"},{"reference_url":"https://security.gentoo.org/glsa/202405-01","reference_id":"GLSA-202405-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-01"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html","reference_id":"msg00024.html","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html","reference_id":"msg00025.html","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3347","reference_id":"RHSA-2024:3347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3391","reference_id":"RHSA-2024:3391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3466","reference_id":"RHSA-2024:3466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3466"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4058","reference_id":"RHSA-2024:4058","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4058"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4078","reference_id":"RHSA-2024:4078","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4078"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4243","reference_id":"RHSA-2024:4243","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4243"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4406","reference_id":"RHSA-2024:4406","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4406"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9190","reference_id":"RHSA-2024:9190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9192","reference_id":"RHSA-2024:9192","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9192"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/","reference_id":"T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/","reference_id":"U5VHWS52HGD743C47UMCSAK2A773M2YE","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7212-1/","reference_id":"USN-7212-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7212-1/"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/","reference_id":"XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/"},{"reference_url":"https://www.bamsoftware.com/hacks/zipbomb/","reference_id":"zipbomb","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://www.bamsoftware.com/hacks/zipbomb/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936197?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936196?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936201?format=json","purl":"pkg:deb/debian/pypy3@7.3.16%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.16%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-0450"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-js5p-py72-2kga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64889?format=json","vulnerability_id":"VCID-kn9b-2gxw-gqgx","summary":"cpython: email header injection due to unquoted newlines","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1299.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1299.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-1299","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13681","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13418","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13742","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13544","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13624","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13676","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13646","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13609","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13561","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13476","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13472","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13543","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13555","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13527","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-1299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1299"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/052e55e7d44718fe46cbba0ca995cb8fcc359413","reference_id":"052e55e7d44718fe46cbba0ca995cb8fcc359413","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://github.com/python/cpython/commit/052e55e7d44718fe46cbba0ca995cb8fcc359413"},{"reference_url":"https://github.com/python/cpython/commit/0a925ab591c45d6638f37b5e57796f36fa0e56d8","reference_id":"0a925ab591c45d6638f37b5e57796f36fa0e56d8","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://github.com/python/cpython/commit/0a925ab591c45d6638f37b5e57796f36fa0e56d8"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126744","reference_id":"1126744","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126744"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126745","reference_id":"1126745","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126745"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126746","reference_id":"1126746","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126746"},{"reference_url":"https://github.com/python/cpython/issues/144125","reference_id":"144125","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://github.com/python/cpython/issues/144125"},{"reference_url":"https://github.com/python/cpython/pull/144126","reference_id":"144126","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://github.com/python/cpython/pull/144126"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2432437","reference_id":"2432437","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2432437"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/6ZZULGALJTITEAGEXLDJE2C6FORDXPBT/","reference_id":"6ZZULGALJTITEAGEXLDJE2C6FORDXPBT","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/6ZZULGALJTITEAGEXLDJE2C6FORDXPBT/"},{"reference_url":"https://github.com/python/cpython/commit/7877fe424415bc4a13045e62a90a7277413d8cb9","reference_id":"7877fe424415bc4a13045e62a90a7277413d8cb9","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://github.com/python/cpython/commit/7877fe424415bc4a13045e62a90a7277413d8cb9"},{"reference_url":"https://github.com/python/cpython/commit/842ce19a0c0b58d61591e8f6a708c38db1fb94e4","reference_id":"842ce19a0c0b58d61591e8f6a708c38db1fb94e4","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://github.com/python/cpython/commit/842ce19a0c0b58d61591e8f6a708c38db1fb94e4"},{"reference_url":"https://github.com/python/cpython/commit/8cdf6204f4ae821f32993f8fc6bad0d318f95f36","reference_id":"8cdf6204f4ae821f32993f8fc6bad0d318f95f36","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://github.com/python/cpython/commit/8cdf6204f4ae821f32993f8fc6bad0d318f95f36"},{"reference_url":"https://cve.org/CVERecord?id=CVE-2024-6923","reference_id":"CVERecord?id=CVE-2024-6923","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://cve.org/CVERecord?id=CVE-2024-6923"},{"reference_url":"https://github.com/python/cpython/commit/e417f05ad77a4c30ddc07f99e90fc0cef43e831a","reference_id":"e417f05ad77a4c30ddc07f99e90fc0cef43e831a","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/"}],"url":"https://github.com/python/cpython/commit/e417f05ad77a4c30ddc07f99e90fc0cef43e831a"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2128","reference_id":"RHSA-2026:2128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4165","reference_id":"RHSA-2026:4165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4168","reference_id":"RHSA-2026:4168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4216","reference_id":"RHSA-2026:4216","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4216"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4463","reference_id":"RHSA-2026:4463","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4463"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4473","reference_id":"RHSA-2026:4473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4713","reference_id":"RHSA-2026:4713","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4713"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4746","reference_id":"RHSA-2026:4746","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4943","reference_id":"RHSA-2026:4943","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4943"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5152","reference_id":"RHSA-2026:5152","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5152"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5215","reference_id":"RHSA-2026:5215","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5215"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5216","reference_id":"RHSA-2026:5216","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5216"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5218","reference_id":"RHSA-2026:5218","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5218"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5219","reference_id":"RHSA-2026:5219","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5219"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5221","reference_id":"RHSA-2026:5221","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5221"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5223","reference_id":"RHSA-2026:5223","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5223"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5225","reference_id":"RHSA-2026:5225","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5225"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5226","reference_id":"RHSA-2026:5226","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5226"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5315","reference_id":"RHSA-2026:5315","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5315"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5399","reference_id":"RHSA-2026:5399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5399"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5606","reference_id":"RHSA-2026:5606","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5606"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6008","reference_id":"RHSA-2026:6008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6253","reference_id":"RHSA-2026:6253","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6253"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6464","reference_id":"RHSA-2026:6464","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6464"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7329","reference_id":"RHSA-2026:7329","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7329"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8746","reference_id":"RHSA-2026:8746","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8747","reference_id":"RHSA-2026:8747","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8747"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8748","reference_id":"RHSA-2026:8748","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8748"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-1299"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kn9b-2gxw-gqgx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68453?format=json","vulnerability_id":"VCID-mtk7-qut6-syd8","summary":"cpython: Cpython infinite loop when parsing a tarfile","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8194.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8194.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-8194","reference_id":"","reference_type":"","scores":[{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.3921","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.39174","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.39211","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.392","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.39184","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.39129","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0019","scoring_system":"epss","scoring_elements":"0.40883","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.45951","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.45957","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00231","scoring_system":"epss","scoring_elements":"0.45905","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00249","scoring_system":"epss","scoring_elements":"0.48132","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00257","scoring_system":"epss","scoring_elements":"0.49038","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00257","scoring_system":"epss","scoring_elements":"0.49072","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00257","scoring_system":"epss","scoring_elements":"0.49082","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-8194"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8194","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8194"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1124764","reference_id":"1124764","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1124764"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126758","reference_id":"1126758","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126758"},{"reference_url":"https://github.com/python/cpython/issues/130577","reference_id":"130577","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://github.com/python/cpython/issues/130577"},{"reference_url":"https://github.com/python/cpython/pull/137027","reference_id":"137027","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://github.com/python/cpython/pull/137027"},{"reference_url":"https://gist.github.com/sethmlarson/1716ac5b82b73dbcbf23ad2eff8b33e1","reference_id":"1716ac5b82b73dbcbf23ad2eff8b33e1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://gist.github.com/sethmlarson/1716ac5b82b73dbcbf23ad2eff8b33e1"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2384043","reference_id":"2384043","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2384043"},{"reference_url":"https://github.com/python/cpython/commit/57f5981d6260ed21266e0c26951b8564cc252bc2","reference_id":"57f5981d6260ed21266e0c26951b8564cc252bc2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://github.com/python/cpython/commit/57f5981d6260ed21266e0c26951b8564cc252bc2"},{"reference_url":"https://github.com/python/cpython/commit/7040aa54f14676938970e10c5f74ea93cd56aa38","reference_id":"7040aa54f14676938970e10c5f74ea93cd56aa38","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://github.com/python/cpython/commit/7040aa54f14676938970e10c5f74ea93cd56aa38"},{"reference_url":"https://github.com/python/cpython/commit/73f03e4808206f71eb6b92c579505a220942ef19","reference_id":"73f03e4808206f71eb6b92c579505a220942ef19","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://github.com/python/cpython/commit/73f03e4808206f71eb6b92c579505a220942ef19"},{"reference_url":"https://github.com/python/cpython/commit/b4ec17488eedec36d3c05fec127df71c0071f6cb","reference_id":"b4ec17488eedec36d3c05fec127df71c0071f6cb","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://github.com/python/cpython/commit/b4ec17488eedec36d3c05fec127df71c0071f6cb"},{"reference_url":"https://github.com/python/cpython/commit/c9d9f78feb1467e73fd29356c040bde1c104f29f","reference_id":"c9d9f78feb1467e73fd29356c040bde1c104f29f","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://github.com/python/cpython/commit/c9d9f78feb1467e73fd29356c040bde1c104f29f"},{"reference_url":"https://github.com/python/cpython/commit/cdae923ffe187d6ef916c0f665a31249619193fe","reference_id":"cdae923ffe187d6ef916c0f665a31249619193fe","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://github.com/python/cpython/commit/cdae923ffe187d6ef916c0f665a31249619193fe"},{"reference_url":"https://github.com/python/cpython/commit/fbc2a0ca9ac8aff6887f8ddf79b87b4510277227","reference_id":"fbc2a0ca9ac8aff6887f8ddf79b87b4510277227","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://github.com/python/cpython/commit/fbc2a0ca9ac8aff6887f8ddf79b87b4510277227"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14546","reference_id":"RHSA-2025:14546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14560","reference_id":"RHSA-2025:14560","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14560"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14841","reference_id":"RHSA-2025:14841","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14841"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14900","reference_id":"RHSA-2025:14900","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14900"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14984","reference_id":"RHSA-2025:14984","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14984"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15007","reference_id":"RHSA-2025:15007","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15007"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15010","reference_id":"RHSA-2025:15010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15019","reference_id":"RHSA-2025:15019","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15019"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15348","reference_id":"RHSA-2025:15348","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15724","reference_id":"RHSA-2025:15724","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15724"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15800","reference_id":"RHSA-2025:15800","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15800"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15968","reference_id":"RHSA-2025:15968","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15968"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16012","reference_id":"RHSA-2025:16012","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16012"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16016","reference_id":"RHSA-2025:16016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16031","reference_id":"RHSA-2025:16031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16062","reference_id":"RHSA-2025:16062","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16062"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16078","reference_id":"RHSA-2025:16078","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16078"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16117","reference_id":"RHSA-2025:16117","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16117"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16118","reference_id":"RHSA-2025:16118","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16118"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16151","reference_id":"RHSA-2025:16151","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16151"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16152","reference_id":"RHSA-2025:16152","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16152"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16153","reference_id":"RHSA-2025:16153","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16153"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16262","reference_id":"RHSA-2025:16262","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16262"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:16524","reference_id":"RHSA-2025:16524","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:16524"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19421","reference_id":"RHSA-2025:19421","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19421"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19422","reference_id":"RHSA-2025:19422","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19422"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19423","reference_id":"RHSA-2025:19423","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19424","reference_id":"RHSA-2025:19424","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19424"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19425","reference_id":"RHSA-2025:19425","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19425"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19426","reference_id":"RHSA-2025:19426","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19426"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19427","reference_id":"RHSA-2025:19427","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19427"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19428","reference_id":"RHSA-2025:19428","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19428"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19429","reference_id":"RHSA-2025:19429","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19429"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19430","reference_id":"RHSA-2025:19430","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19430"},{"reference_url":"https://usn.ubuntu.com/7710-1/","reference_id":"USN-7710-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7710-1/"},{"reference_url":"https://usn.ubuntu.com/7710-2/","reference_id":"USN-7710-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7710-2/"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/ZULLF3IZ726XP5EY7XJ7YIN3K5MDYR2D/","reference_id":"ZULLF3IZ726XP5EY7XJ7YIN3K5MDYR2D","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-28T18:57:54Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/ZULLF3IZ726XP5EY7XJ7YIN3K5MDYR2D/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-8194"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mtk7-qut6-syd8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/66394?format=json","vulnerability_id":"VCID-nqqc-u8d5-8qf6","summary":"cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12084.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12084.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-12084","reference_id":"","reference_type":"","scores":[{"value":"0.00049","scoring_system":"epss","scoring_elements":"0.15347","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.17965","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18025","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18075","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18118","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18111","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.1805","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18263","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.17978","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.17968","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38724","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38808","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.3883","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.39039","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-12084"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12084","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12084"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/027f21e417b26eed4505ac2db101a4352b7c51a0","reference_id":"027f21e417b26eed4505ac2db101a4352b7c51a0","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/027f21e417b26eed4505ac2db101a4352b7c51a0"},{"reference_url":"https://github.com/python/cpython/commit/08d8e18ad81cd45bc4a27d6da478b51ea49486e4","reference_id":"08d8e18ad81cd45bc4a27d6da478b51ea49486e4","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/08d8e18ad81cd45bc4a27d6da478b51ea49486e4"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126784","reference_id":"1126784","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126784"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126785","reference_id":"1126785","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126785"},{"reference_url":"https://github.com/python/cpython/issues/142145","reference_id":"142145","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/issues/142145"},{"reference_url":"https://github.com/python/cpython/pull/142146","reference_id":"142146","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/pull/142146"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2418655","reference_id":"2418655","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2418655"},{"reference_url":"https://github.com/python/cpython/commit/27648a1818749ef44c420afe6173af6868715437","reference_id":"27648a1818749ef44c420afe6173af6868715437","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/27648a1818749ef44c420afe6173af6868715437"},{"reference_url":"https://github.com/python/cpython/commit/41f468786762348960486c166833a218a0a436af","reference_id":"41f468786762348960486c166833a218a0a436af","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/41f468786762348960486c166833a218a0a436af"},{"reference_url":"https://github.com/python/cpython/commit/57937a8e5e293f0dcba5115f7b7a11b1e0c9a273","reference_id":"57937a8e5e293f0dcba5115f7b7a11b1e0c9a273","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/57937a8e5e293f0dcba5115f7b7a11b1e0c9a273"},{"reference_url":"https://github.com/python/cpython/commit/8d2d7bb2e754f8649a68ce4116271a4932f76907","reference_id":"8d2d7bb2e754f8649a68ce4116271a4932f76907","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/8d2d7bb2e754f8649a68ce4116271a4932f76907"},{"reference_url":"https://github.com/python/cpython/commit/9c9dda6625a2a90d2a06c657eee021d6be19842d","reference_id":"9c9dda6625a2a90d2a06c657eee021d6be19842d","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/9c9dda6625a2a90d2a06c657eee021d6be19842d"},{"reference_url":"https://github.com/python/cpython/commit/a46c10ec9d4050ab67b8a932e0859a2ea60c3cb8","reference_id":"a46c10ec9d4050ab67b8a932e0859a2ea60c3cb8","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/a46c10ec9d4050ab67b8a932e0859a2ea60c3cb8"},{"reference_url":"https://github.com/python/cpython/commit/a696ba8b4d42fd632afc9bc88ad830a2e4cceed8","reference_id":"a696ba8b4d42fd632afc9bc88ad830a2e4cceed8","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/a696ba8b4d42fd632afc9bc88ad830a2e4cceed8"},{"reference_url":"https://github.com/python/cpython/commit/c97e87593063d84a2bd9fe7068b30eb44de23dc0","reference_id":"c97e87593063d84a2bd9fe7068b30eb44de23dc0","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/c97e87593063d84a2bd9fe7068b30eb44de23dc0"},{"reference_url":"https://github.com/python/cpython/commit/ddcd2acd85d891a53e281c773b3093f9db953964","reference_id":"ddcd2acd85d891a53e281c773b3093f9db953964","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/ddcd2acd85d891a53e281c773b3093f9db953964"},{"reference_url":"https://github.com/python/cpython/commit/e91c11449cad34bac3ea55ee09ca557691d92b53","reference_id":"e91c11449cad34bac3ea55ee09ca557691d92b53","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/"}],"url":"https://github.com/python/cpython/commit/e91c11449cad34bac3ea55ee09ca557691d92b53"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0123","reference_id":"RHSA-2026:0123","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0123"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1374","reference_id":"RHSA-2026:1374","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1408","reference_id":"RHSA-2026:1408","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1408"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1410","reference_id":"RHSA-2026:1410","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1410"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1478","reference_id":"RHSA-2026:1478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1537","reference_id":"RHSA-2026:1537","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1537"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1558","reference_id":"RHSA-2026:1558","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1582","reference_id":"RHSA-2026:1582","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1582"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1583","reference_id":"RHSA-2026:1583","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1583"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1620","reference_id":"RHSA-2026:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1631","reference_id":"RHSA-2026:1631","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1631"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1736","reference_id":"RHSA-2026:1736","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1736"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1828","reference_id":"RHSA-2026:1828","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1828"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1892","reference_id":"RHSA-2026:1892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1893","reference_id":"RHSA-2026:1893","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1893"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1922","reference_id":"RHSA-2026:1922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2084","reference_id":"RHSA-2026:2084","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2084"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2233","reference_id":"RHSA-2026:2233","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2275","reference_id":"RHSA-2026:2275","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2275"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2276","reference_id":"RHSA-2026:2276","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2276"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2330","reference_id":"RHSA-2026:2330","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2330"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2391","reference_id":"RHSA-2026:2391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2392","reference_id":"RHSA-2026:2392","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2393","reference_id":"RHSA-2026:2393","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2393"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2563","reference_id":"RHSA-2026:2563","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2563"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2713","reference_id":"RHSA-2026:2713","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2713"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4943","reference_id":"RHSA-2026:4943","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4943"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/8018-1/","reference_id":"USN-8018-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-1/"},{"reference_url":"https://usn.ubuntu.com/8018-3/","reference_id":"USN-8018-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-3/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-12084"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nqqc-u8d5-8qf6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69467?format=json","vulnerability_id":"VCID-q6g1-cjz3-77e4","summary":"cpython: Tarfile extracts filtered members when errorlevel=0","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4435.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4435.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4435","reference_id":"","reference_type":"","scores":[{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67621","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67725","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67642","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67622","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67673","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67688","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67711","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67696","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67663","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67699","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67712","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67692","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00541","scoring_system":"epss","scoring_elements":"0.67723","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-4435"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/135034","reference_id":"135034","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/issues/135034"},{"reference_url":"https://github.com/python/cpython/pull/135037","reference_id":"135037","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/pull/135037"},{"reference_url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da","reference_id":"19de092debb3d7e832e5672cc2f7b788d35951da","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370010","reference_id":"2370010","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370010"},{"reference_url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9","reference_id":"28463dba112af719df1e8b0391c46787ad756dd9","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9"},{"reference_url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a","reference_id":"3612d8f51741b11f36f8fb0494d79086bac9390a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"},{"reference_url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_id":"4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e"},{"reference_url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a","reference_id":"9c1110ef6652687d7c55f590f909720eddde965a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a"},{"reference_url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_id":"9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"},{"reference_url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_id":"aa9eb5f757ceff461e6e996f12c89e5d9b583b01","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01"},{"reference_url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_id":"dd8f187d0746da151e0025c51680979ac5b4cfb1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/","reference_id":"MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10026","reference_id":"RHSA-2025:10026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10028","reference_id":"RHSA-2025:10028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10031","reference_id":"RHSA-2025:10031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10128","reference_id":"RHSA-2025:10128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10136","reference_id":"RHSA-2025:10136","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10140","reference_id":"RHSA-2025:10140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10148","reference_id":"RHSA-2025:10148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10189","reference_id":"RHSA-2025:10189","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10189"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10399","reference_id":"RHSA-2025:10399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10399"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10484","reference_id":"RHSA-2025:10484","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10484"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10602","reference_id":"RHSA-2025:10602","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:10602"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13267","reference_id":"RHSA-2025:13267","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13267"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9918","reference_id":"RHSA-2025:9918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9918"},{"reference_url":"https://usn.ubuntu.com/7583-1/","reference_id":"USN-7583-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7583-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936204?format=json","purl":"pkg:deb/debian/pypy3@7.3.20%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.20%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-4435"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q6g1-cjz3-77e4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38959?format=json","vulnerability_id":"VCID-qqh6-evfk-1fgy","summary":"Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45061.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45061.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-45061","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29338","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29304","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29387","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.292","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29236","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29209","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29262","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29308","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29264","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31146","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.3135","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31557","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31524","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31224","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-45061"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2144072","reference_id":"2144072","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2144072"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/","reference_id":"2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/","reference_id":"35YDIWCUMWTMDBWFRAVENFH6BLB65D6S","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/","reference_id":"4WBZJNSALFGMPYTINIF57HAAK46U72WQ","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/","reference_id":"63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/","reference_id":"7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/"},{"reference_url":"https://github.com/python/cpython/issues/98433","reference_id":"98433","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://github.com/python/cpython/issues/98433"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/","reference_id":"B3YI6JYARWU6GULWOHNUROSACT54XFFS","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH/","reference_id":"B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR/","reference_id":"BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/","reference_id":"GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/","reference_id":"IN26PWZTYG6IF3APLRXQJBVACQHZUPT2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/","reference_id":"JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/","reference_id":"JTYVESWVBPD57ZJC35G5722Q6TS37WSB","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/","reference_id":"KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/","reference_id":"LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html","reference_id":"msg00024.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html","reference_id":"msg00039.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221209-0007/","reference_id":"ntap-20221209-0007","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221209-0007/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/","reference_id":"O67LRHDTJWH544KXB6KY4HMHQLYDXFPK","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/","reference_id":"ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/","reference_id":"PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L/","reference_id":"QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/","reference_id":"QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/","reference_id":"RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/","reference_id":"RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0833","reference_id":"RHSA-2023:0833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0953","reference_id":"RHSA-2023:0953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2763","reference_id":"RHSA-2023:2763","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2763"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2764","reference_id":"RHSA-2023:2764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2860","reference_id":"RHSA-2023:2860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6793","reference_id":"RHSA-2023:6793","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6793"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0430","reference_id":"RHSA-2024:0430","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0430"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/","reference_id":"RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/","reference_id":"T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/","reference_id":"UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/"},{"reference_url":"https://usn.ubuntu.com/5767-1/","reference_id":"USN-5767-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5767-1/"},{"reference_url":"https://usn.ubuntu.com/5767-2/","reference_id":"USN-5767-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5767-2/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7212-1/","reference_id":"USN-7212-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7212-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/","reference_id":"VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/","reference_id":"X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/","reference_id":"XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/","reference_id":"YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/","reference_id":"ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936186?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936181?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2022-45061"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qqh6-evfk-1fgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/75344?format=json","vulnerability_id":"VCID-qwhz-912b-8kh5","summary":"cpython: python: Memory race condition in ssl.SSLContext certificate store methods","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0397.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0397.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0397","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59675","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59633","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59658","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59628","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59679","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59692","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59712","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59695","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59677","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5971","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59717","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59701","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5967","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5969","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0397"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0397","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0397"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/01c37f1d0714f5822d34063ca7180b595abf589d","reference_id":"01c37f1d0714f5822d34063ca7180b595abf589d","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/01c37f1d0714f5822d34063ca7180b595abf589d"},{"reference_url":"https://github.com/python/cpython/issues/114572","reference_id":"114572","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/issues/114572"},{"reference_url":"https://github.com/python/cpython/pull/114573","reference_id":"114573","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/pull/114573"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/06/17/2","reference_id":"2","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/06/17/2"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2301891","reference_id":"2301891","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2301891"},{"reference_url":"https://github.com/python/cpython/commit/29c97287d205bf2f410f4895ebce3f43b5160524","reference_id":"29c97287d205bf2f410f4895ebce3f43b5160524","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/29c97287d205bf2f410f4895ebce3f43b5160524"},{"reference_url":"https://github.com/python/cpython/commit/37324b421b72b7bc9934e27aba85d48d4773002e","reference_id":"37324b421b72b7bc9934e27aba85d48d4773002e","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/37324b421b72b7bc9934e27aba85d48d4773002e"},{"reference_url":"https://github.com/python/cpython/commit/542f3272f56f31ed04e74c40635a913fbc12d286","reference_id":"542f3272f56f31ed04e74c40635a913fbc12d286","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/542f3272f56f31ed04e74c40635a913fbc12d286"},{"reference_url":"https://github.com/python/cpython/commit/b228655c227b2ca298a8ffac44d14ce3d22f6faa","reference_id":"b228655c227b2ca298a8ffac44d14ce3d22f6faa","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/b228655c227b2ca298a8ffac44d14ce3d22f6faa"},{"reference_url":"https://github.com/python/cpython/commit/bce693111bff906ccf9281c22371331aaff766ab","reference_id":"bce693111bff906ccf9281c22371331aaff766ab","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/bce693111bff906ccf9281c22371331aaff766ab"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP/","reference_id":"BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10983","reference_id":"RHSA-2024:10983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9190","reference_id":"RHSA-2024:9190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9192","reference_id":"RHSA-2024:9192","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9192"},{"reference_url":"https://usn.ubuntu.com/6928-1/","reference_id":"USN-6928-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6928-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936201?format=json","purl":"pkg:deb/debian/pypy3@7.3.16%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.16%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-0397"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qwhz-912b-8kh5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/351732?format=json","vulnerability_id":"VCID-rcu5-gpmt-r7cb","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6100.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6100.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-6100","reference_id":"","reference_type":"","scores":[{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20321","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20323","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00151","scoring_system":"epss","scoring_elements":"0.35613","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00151","scoring_system":"epss","scoring_elements":"0.35354","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00151","scoring_system":"epss","scoring_elements":"0.35274","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00151","scoring_system":"epss","scoring_elements":"0.35375","published_at":"2026-04-24T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-6100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6100"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/148395","reference_id":"148395","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/"}],"url":"https://github.com/python/cpython/issues/148395"},{"reference_url":"https://github.com/python/cpython/pull/148396","reference_id":"148396","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/"}],"url":"https://github.com/python/cpython/pull/148396"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2457932","reference_id":"2457932","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2457932"},{"reference_url":"https://github.com/python/cpython/commit/47128e64f98c3a20271138a98c2922bea2a3ee0e","reference_id":"47128e64f98c3a20271138a98c2922bea2a3ee0e","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/"}],"url":"https://github.com/python/cpython/commit/47128e64f98c3a20271138a98c2922bea2a3ee0e"},{"reference_url":"https://github.com/python/cpython/commit/6a5f79c8d7bbf22b083b240910c7a8781a59437d","reference_id":"6a5f79c8d7bbf22b083b240910c7a8781a59437d","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/"}],"url":"https://github.com/python/cpython/commit/6a5f79c8d7bbf22b083b240910c7a8781a59437d"},{"reference_url":"https://github.com/python/cpython/commit/8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2","reference_id":"8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/"}],"url":"https://github.com/python/cpython/commit/8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2"},{"reference_url":"https://github.com/python/cpython/commit/c3cf71c3366fe49acb776a639405c0eea6169c20","reference_id":"c3cf71c3366fe49acb776a639405c0eea6169c20","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/"}],"url":"https://github.com/python/cpython/commit/c3cf71c3366fe49acb776a639405c0eea6169c20"},{"reference_url":"https://github.com/python/cpython/commit/e20c6c9667c99ecaab96e1a2b3767082841ffc8b","reference_id":"e20c6c9667c99ecaab96e1a2b3767082841ffc8b","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/"}],"url":"https://github.com/python/cpython/commit/e20c6c9667c99ecaab96e1a2b3767082841ffc8b"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3/","reference_id":"HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T19:21:03Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10117","reference_id":"RHSA-2026:10117","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10117"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10140","reference_id":"RHSA-2026:10140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10141","reference_id":"RHSA-2026:10141","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10141"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10711","reference_id":"RHSA-2026:10711","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10711"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10745","reference_id":"RHSA-2026:10745","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10745"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10774","reference_id":"RHSA-2026:10774","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10774"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10949","reference_id":"RHSA-2026:10949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10950","reference_id":"RHSA-2026:10950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11062","reference_id":"RHSA-2026:11062","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:11062"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11077","reference_id":"RHSA-2026:11077","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:11077"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11768","reference_id":"RHSA-2026:11768","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:11768"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9228","reference_id":"RHSA-2026:9228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9228"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-6100"],"risk_score":4.1,"exploitability":"0.5","weighted_severity":"8.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rcu5-gpmt-r7cb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72803?format=json","vulnerability_id":"VCID-smck-sdx2-c7du","summary":"python: Improper validation of IPv6 and IPvFuture addresses","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11168.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11168.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-11168","reference_id":"","reference_type":"","scores":[{"value":"0.00475","scoring_system":"epss","scoring_elements":"0.64815","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00475","scoring_system":"epss","scoring_elements":"0.64801","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00475","scoring_system":"epss","scoring_elements":"0.64751","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66749","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.6672","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66762","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00552","scoring_system":"epss","scoring_elements":"0.68116","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00552","scoring_system":"epss","scoring_elements":"0.67987","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00552","scoring_system":"epss","scoring_elements":"0.68006","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69594","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69544","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69553","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69534","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69586","published_at":"2026-04-24T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-11168"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11168","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11168"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/103848","reference_id":"103848","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/issues/103848"},{"reference_url":"https://github.com/python/cpython/pull/103849","reference_id":"103849","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/pull/103849"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2325776","reference_id":"2325776","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2325776"},{"reference_url":"https://github.com/python/cpython/commit/29f348e232e82938ba2165843c448c2b291504c5","reference_id":"29f348e232e82938ba2165843c448c2b291504c5","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/commit/29f348e232e82938ba2165843c448c2b291504c5"},{"reference_url":"https://github.com/python/cpython/commit/634ded45545ce8cbd6fd5d49785613dd7fa9b89e","reference_id":"634ded45545ce8cbd6fd5d49785613dd7fa9b89e","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/commit/634ded45545ce8cbd6fd5d49785613dd7fa9b89e"},{"reference_url":"https://github.com/python/cpython/commit/b2171a2fd41416cf68afd67460578631d755a550","reference_id":"b2171a2fd41416cf68afd67460578631d755a550","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/commit/b2171a2fd41416cf68afd67460578631d755a550"},{"reference_url":"https://github.com/python/cpython/commit/ddca2953191c67a12b1f19d6bca41016c6ae7132","reference_id":"ddca2953191c67a12b1f19d6bca41016c6ae7132","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/commit/ddca2953191c67a12b1f19d6bca41016c6ae7132"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10779","reference_id":"RHSA-2024:10779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10983","reference_id":"RHSA-2024:10983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://usn.ubuntu.com/7218-1/","reference_id":"USN-7218-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7218-1/"},{"reference_url":"https://usn.ubuntu.com/7280-3/","reference_id":"USN-7280-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7280-3/"},{"reference_url":"https://usn.ubuntu.com/7348-1/","reference_id":"USN-7348-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-1/"},{"reference_url":"https://usn.ubuntu.com/7488-1/","reference_id":"USN-7488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7488-1/"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T/","reference_id":"XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936202?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936203?format=json","purl":"pkg:deb/debian/pypy3@7.3.18%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.18%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-11168"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-smck-sdx2-c7du"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/73076?format=json","vulnerability_id":"VCID-tbuw-2msj-tqd9","summary":"python: Virtual environment (venv) activation scripts don't quote paths","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9287.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9287.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-9287","reference_id":"","reference_type":"","scores":[{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19167","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19545","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19591","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19864","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.1976","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19753","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19835","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19915","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19969","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19987","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19944","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19885","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19862","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19866","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-9287"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9287","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9287"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089117","reference_id":"1089117","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089117"},{"reference_url":"https://github.com/python/cpython/issues/124651","reference_id":"124651","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/issues/124651"},{"reference_url":"https://github.com/python/cpython/pull/124712","reference_id":"124712","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/pull/124712"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2321440","reference_id":"2321440","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2321440"},{"reference_url":"https://github.com/python/cpython/commit/633555735a023d3e4d92ba31da35b1205f9ecbd7","reference_id":"633555735a023d3e4d92ba31da35b1205f9ecbd7","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/633555735a023d3e4d92ba31da35b1205f9ecbd7"},{"reference_url":"https://github.com/python/cpython/commit/8450b2482586857d689b6658f08de9c8179af7db","reference_id":"8450b2482586857d689b6658f08de9c8179af7db","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/8450b2482586857d689b6658f08de9c8179af7db"},{"reference_url":"https://github.com/python/cpython/commit/9286ab3a107ea41bd3f3c3682ce2512692bdded8","reference_id":"9286ab3a107ea41bd3f3c3682ce2512692bdded8","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/9286ab3a107ea41bd3f3c3682ce2512692bdded8"},{"reference_url":"https://github.com/python/cpython/commit/ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97","reference_id":"ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97"},{"reference_url":"https://github.com/python/cpython/commit/d48cc82ed25e26b02eb97c6263d95dcaa1e9111b","reference_id":"d48cc82ed25e26b02eb97c6263d95dcaa1e9111b","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/d48cc82ed25e26b02eb97c6263d95dcaa1e9111b"},{"reference_url":"https://github.com/python/cpython/commit/e52095a0c1005a87eed2276af7a1f2f66e2b6483","reference_id":"e52095a0c1005a87eed2276af7a1f2f66e2b6483","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/e52095a0c1005a87eed2276af7a1f2f66e2b6483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10779","reference_id":"RHSA-2024:10779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10978","reference_id":"RHSA-2024:10978","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10978"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10979","reference_id":"RHSA-2024:10979","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10979"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10980","reference_id":"RHSA-2024:10980","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10980"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10983","reference_id":"RHSA-2024:10983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11024","reference_id":"RHSA-2024:11024","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11024"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11035","reference_id":"RHSA-2024:11035","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11035"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11111","reference_id":"RHSA-2024:11111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0280","reference_id":"RHSA-2025:0280","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0280"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL/","reference_id":"RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL/"},{"reference_url":"https://usn.ubuntu.com/7116-1/","reference_id":"USN-7116-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7116-1/"},{"reference_url":"https://usn.ubuntu.com/7348-1/","reference_id":"USN-7348-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-1/"},{"reference_url":"https://usn.ubuntu.com/7488-1/","reference_id":"USN-7488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7488-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936186?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936199?format=json","purl":"pkg:deb/debian/pypy3@7.3.17%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.17%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-9287"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tbuw-2msj-tqd9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/50772?format=json","vulnerability_id":"VCID-tyk4-kazt-kydj","summary":"Multiple vulnerabilities have been found in Python, the worst of\n    which could result in a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20907.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20907.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-20907","reference_id":"","reference_type":"","scores":[{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55257","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55355","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.5538","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55358","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55408","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55419","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55397","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55379","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55414","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55418","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55336","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55357","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55329","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-20907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20907"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856481","reference_id":"1856481","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856481"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970099","reference_id":"970099","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970099"},{"reference_url":"https://security.gentoo.org/glsa/202008-01","reference_id":"GLSA-202008-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202008-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4273","reference_id":"RHSA-2020:4273","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4285","reference_id":"RHSA-2020:4285","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4285"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4299","reference_id":"RHSA-2020:4299","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4299"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4433","reference_id":"RHSA-2020:4433","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4433"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4641","reference_id":"RHSA-2020:4641","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4641"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4654","reference_id":"RHSA-2020:4654","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4654"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5009","reference_id":"RHSA-2020:5009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5010","reference_id":"RHSA-2020:5010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0528","reference_id":"RHSA-2021:0528","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0528"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0761","reference_id":"RHSA-2021:0761","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0761"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0881","reference_id":"RHSA-2021:0881","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0949","reference_id":"RHSA-2021:0949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0949"},{"reference_url":"https://usn.ubuntu.com/4428-1/","reference_id":"USN-4428-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4428-1/"},{"reference_url":"https://usn.ubuntu.com/4754-3/","reference_id":"USN-4754-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4754-3/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936184?format=json","purl":"pkg:deb/debian/pypy3@7.3.3%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.3%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2019-20907"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tyk4-kazt-kydj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31511?format=json","vulnerability_id":"VCID-v186-7sv1-ubej","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7592.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7592.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7592","reference_id":"","reference_type":"","scores":[{"value":"0.00796","scoring_system":"epss","scoring_elements":"0.74062","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00796","scoring_system":"epss","scoring_elements":"0.73941","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00796","scoring_system":"epss","scoring_elements":"0.73966","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77231","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77258","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77224","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77264","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77233","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77147","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77179","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77188","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77215","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77195","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77191","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7592"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7592","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7592"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/123067","reference_id":"123067","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/issues/123067"},{"reference_url":"https://github.com/python/cpython/pull/123075","reference_id":"123075","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/pull/123075"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2305879","reference_id":"2305879","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2305879"},{"reference_url":"https://github.com/python/cpython/commit/391e5626e3ee5af267b97e37abc7475732e67621","reference_id":"391e5626e3ee5af267b97e37abc7475732e67621","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/391e5626e3ee5af267b97e37abc7475732e67621"},{"reference_url":"https://github.com/python/cpython/commit/44e458357fca05ca0ae2658d62c8c595b048b5ef","reference_id":"44e458357fca05ca0ae2658d62c8c595b048b5ef","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/44e458357fca05ca0ae2658d62c8c595b048b5ef"},{"reference_url":"https://github.com/python/cpython/commit/a77ab24427a18bff817025adb03ca920dc3f1a06","reference_id":"a77ab24427a18bff817025adb03ca920dc3f1a06","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/a77ab24427a18bff817025adb03ca920dc3f1a06"},{"reference_url":"https://github.com/python/cpython/commit/b2f11ca7667e4d57c71c1c88b255115f16042d9a","reference_id":"b2f11ca7667e4d57c71c1c88b255115f16042d9a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/b2f11ca7667e4d57c71c1c88b255115f16042d9a"},{"reference_url":"https://github.com/python/cpython/commit/d4ac921a4b081f7f996a5d2b101684b67ba0ed7f","reference_id":"d4ac921a4b081f7f996a5d2b101684b67ba0ed7f","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/d4ac921a4b081f7f996a5d2b101684b67ba0ed7f"},{"reference_url":"https://github.com/python/cpython/commit/d662e2db2605515a767f88ad48096b8ac623c774","reference_id":"d662e2db2605515a767f88ad48096b8ac623c774","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/d662e2db2605515a767f88ad48096b8ac623c774"},{"reference_url":"https://github.com/python/cpython/commit/dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1","reference_id":"dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK/","reference_id":"HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10983","reference_id":"RHSA-2024:10983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3631","reference_id":"RHSA-2025:3631","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3631"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3634","reference_id":"RHSA-2025:3634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3634"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"},{"reference_url":"https://usn.ubuntu.com/7015-2/","reference_id":"USN-7015-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936202?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936203?format=json","purl":"pkg:deb/debian/pypy3@7.3.18%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.18%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2024-7592"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v186-7sv1-ubej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38909?format=json","vulnerability_id":"VCID-vpwj-d49q-1uh8","summary":"Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0391.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0391.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0391","reference_id":"","reference_type":"","scores":[{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79807","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79857","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79889","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79886","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79835","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79823","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79852","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.7986","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79882","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79865","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79885","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79815","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79941","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79924","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79918","published_at":"2026-04-24T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0391"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0391","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0391"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2047376","reference_id":"2047376","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2047376"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB/","reference_id":"CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB/"},{"reference_url":"https://bugs.python.org/issue43882","reference_id":"issue43882","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://bugs.python.org/issue43882"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220225-0009/","reference_id":"ntap-20220225-0009","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220225-0009/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1663","reference_id":"RHSA-2022:1663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1663"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1764","reference_id":"RHSA-2022:1764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1821","reference_id":"RHSA-2022:1821","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1821"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6457","reference_id":"RHSA-2022:6457","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6457"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U/","reference_id":"UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U/"},{"reference_url":"https://usn.ubuntu.com/5342-1/","reference_id":"USN-5342-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5342-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5342-2/","reference_id":"USN-USN-5342-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5342-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936186?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936194?format=json","purl":"pkg:deb/debian/pypy3@7.3.6%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.6%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2022-0391"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vpwj-d49q-1uh8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36442?format=json","vulnerability_id":"VCID-w6k8-js68-87g4","summary":"Multiple vulnerabilities have been found in Python, the worst of\n    which might allow attackers to access sensitive information.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23336.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23336.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23336","reference_id":"","reference_type":"","scores":[{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53385","published_at":"2026-04-18T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53379","published_at":"2026-04-16T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53342","published_at":"2026-04-13T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53358","published_at":"2026-04-12T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53323","published_at":"2026-04-09T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53374","published_at":"2026-04-11T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53329","published_at":"2026-04-08T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53276","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54301","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54251","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54311","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54336","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54271","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54321","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54358","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23336"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23336","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23336"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1928904","reference_id":"1928904","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1928904"},{"reference_url":"https://github.com/python/cpython/pull/24297","reference_id":"24297","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://github.com/python/cpython/pull/24297"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3EPYWWFDV22CJ5AOH5VCE72DOASZZ255/","reference_id":"3EPYWWFDV22CJ5AOH5VCE72DOASZZ255","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3EPYWWFDV22CJ5AOH5VCE72DOASZZ255/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YKKDLXL3UEZ3J426C2XTBS63AHE46SM/","reference_id":"3YKKDLXL3UEZ3J426C2XTBS63AHE46SM","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YKKDLXL3UEZ3J426C2XTBS63AHE46SM/"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/02/19/4","reference_id":"4","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/02/19/4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5/","reference_id":"46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5/"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983090","reference_id":"983090","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983090"},{"reference_url":"https://security.archlinux.org/ASA-202102-28","reference_id":"ASA-202102-28","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-28"},{"reference_url":"https://security.archlinux.org/ASA-202102-37","reference_id":"ASA-202102-37","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-37"},{"reference_url":"https://security.archlinux.org/AVG-1465","reference_id":"AVG-1465","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1465"},{"reference_url":"https://security.archlinux.org/AVG-1593","reference_id":"AVG-1593","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1593"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-23336","reference_id":"CVE-2021-23336","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-23336"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA/","reference_id":"FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA/"},{"reference_url":"https://security.gentoo.org/glsa/202104-04","reference_id":"GLSA-202104-04","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://security.gentoo.org/glsa/202104-04"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4/","reference_id":"HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY/","reference_id":"HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR/","reference_id":"IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ/","reference_id":"KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ/","reference_id":"LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO/","reference_id":"MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62/","reference_id":"MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/02/msg00030.html","reference_id":"msg00030.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/02/msg00030.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/","reference_id":"N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJSCSN722JO2E2AGPWD4NTGVELVRPB4R/","reference_id":"NJSCSN722JO2E2AGPWD4NTGVELVRPB4R","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJSCSN722JO2E2AGPWD4NTGVELVRPB4R/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2/","reference_id":"NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210326-0004/","reference_id":"ntap-20210326-0004","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210326-0004/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7/","reference_id":"OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7/"},{"reference_url":"https://lists.apache.org/thread.html/rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E","reference_id":"rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.apache.org/thread.html/rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1633","reference_id":"RHSA-2021:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3252","reference_id":"RHSA-2021:3252","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3252"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4151","reference_id":"RHSA-2021:4151","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4151"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4162","reference_id":"RHSA-2021:4162","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4162"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7/","reference_id":"RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7/","reference_id":"SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7/"},{"reference_url":"https://snyk.io/vuln/SNYK-UPSTREAM-PYTHONCPYTHON-1074933","reference_id":"SNYK-UPSTREAM-PYTHONCPYTHON-1074933","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://snyk.io/vuln/SNYK-UPSTREAM-PYTHONCPYTHON-1074933"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV/","reference_id":"TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV/"},{"reference_url":"https://usn.ubuntu.com/4742-1/","reference_id":"USN-4742-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4742-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4/","reference_id":"W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936190?format=json","purl":"pkg:deb/debian/pypy3@7.3.3%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.3%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2021-23336"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w6k8-js68-87g4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38889?format=json","vulnerability_id":"VCID-z48d-eyxz-bycq","summary":"Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29921.json","reference_id":"","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29921.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-29921","reference_id":"","reference_type":"","scores":[{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83792","published_at":"2026-04-01T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83928","published_at":"2026-04-29T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83916","published_at":"2026-04-24T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83924","published_at":"2026-04-26T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83805","published_at":"2026-04-02T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83819","published_at":"2026-04-04T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83821","published_at":"2026-04-07T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83845","published_at":"2026-04-08T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83851","published_at":"2026-04-09T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83868","published_at":"2026-04-11T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83862","published_at":"2026-04-12T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83857","published_at":"2026-04-13T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.8389","published_at":"2026-04-21T12:55:00Z"},{"value":"0.02048","scoring_system":"epss","scoring_elements":"0.83891","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-29921"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29921","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29921"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1957458","reference_id":"1957458","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1957458"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989195","reference_id":"989195","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989195"},{"reference_url":"https://security.archlinux.org/AVG-1913","reference_id":"AVG-1913","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1913"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4160","reference_id":"RHSA-2021:4160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4162","reference_id":"RHSA-2021:4162","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4162"},{"reference_url":"https://usn.ubuntu.com/4973-1/","reference_id":"USN-4973-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4973-1/"},{"reference_url":"https://usn.ubuntu.com/4973-2/","reference_id":"USN-4973-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4973-2/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936191?format=json","purl":"pkg:deb/debian/pypy3@7.3.8%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.8%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2021-29921"],"risk_score":4.1,"exploitability":"0.5","weighted_severity":"8.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z48d-eyxz-bycq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64936?format=json","vulnerability_id":"VCID-zh1r-7rzh-2bez","summary":"cpython: Header injection in http.cookies.Morsel in Python","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0672.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0672.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-0672","reference_id":"","reference_type":"","scores":[{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36748","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36259","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36779","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36615","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36667","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36683","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36692","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36658","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36632","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36677","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36659","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36599","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36375","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36345","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-0672"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0672","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0672"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126761","reference_id":"1126761","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126761"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126762","reference_id":"1126762","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126762"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126763","reference_id":"1126763","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126763"},{"reference_url":"https://github.com/python/cpython/issues/143919","reference_id":"143919","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/"}],"url":"https://github.com/python/cpython/issues/143919"},{"reference_url":"https://github.com/python/cpython/pull/143920","reference_id":"143920","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/"}],"url":"https://github.com/python/cpython/pull/143920"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431374","reference_id":"2431374","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431374"},{"reference_url":"https://github.com/python/cpython/commit/62700107418eb2cca3fc88da036a243ea975f172","reference_id":"62700107418eb2cca3fc88da036a243ea975f172","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/"}],"url":"https://github.com/python/cpython/commit/62700107418eb2cca3fc88da036a243ea975f172"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/6VFLQQEIX673KXKFUZXCUNE5AZOGZ45M/","reference_id":"6VFLQQEIX673KXKFUZXCUNE5AZOGZ45M","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/6VFLQQEIX673KXKFUZXCUNE5AZOGZ45M/"},{"reference_url":"https://github.com/python/cpython/commit/712452e6f1d4b9f7f8c4c92ebfcaac1705faa440","reference_id":"712452e6f1d4b9f7f8c4c92ebfcaac1705faa440","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/"}],"url":"https://github.com/python/cpython/commit/712452e6f1d4b9f7f8c4c92ebfcaac1705faa440"},{"reference_url":"https://github.com/python/cpython/commit/7852d72b653fea0199acf5fc2a84f6f8b84eba8d","reference_id":"7852d72b653fea0199acf5fc2a84f6f8b84eba8d","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/"}],"url":"https://github.com/python/cpython/commit/7852d72b653fea0199acf5fc2a84f6f8b84eba8d"},{"reference_url":"https://github.com/python/cpython/commit/918387e4912d12ffc166c8f2a38df92b6ec756ca","reference_id":"918387e4912d12ffc166c8f2a38df92b6ec756ca","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/"}],"url":"https://github.com/python/cpython/commit/918387e4912d12ffc166c8f2a38df92b6ec756ca"},{"reference_url":"https://github.com/python/cpython/commit/95746b3a13a985787ef53b977129041971ed7f70","reference_id":"95746b3a13a985787ef53b977129041971ed7f70","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/"}],"url":"https://github.com/python/cpython/commit/95746b3a13a985787ef53b977129041971ed7f70"},{"reference_url":"https://github.com/python/cpython/commit/b1869ff648bbee0717221d09e6deff46617f3e85","reference_id":"b1869ff648bbee0717221d09e6deff46617f3e85","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:40:11Z/"}],"url":"https://github.com/python/cpython/commit/b1869ff648bbee0717221d09e6deff46617f3e85"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10950","reference_id":"RHSA-2026:10950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10950"},{"reference_url":"https://usn.ubuntu.com/8018-1/","reference_id":"USN-8018-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-1/"},{"reference_url":"https://usn.ubuntu.com/8018-3/","reference_id":"USN-8018-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-3/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-0672"],"risk_score":2.7,"exploitability":"0.5","weighted_severity":"5.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zh1r-7rzh-2bez"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/66934?format=json","vulnerability_id":"VCID-znkr-fxtj-4uc7","summary":"cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8291.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8291.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-8291","reference_id":"","reference_type":"","scores":[{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.30092","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29659","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.3014","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29954","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.30015","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.30049","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.30055","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.3001","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29961","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29977","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29956","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.2991","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29835","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29722","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-8291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8291"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118431","reference_id":"1118431","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118431"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118432","reference_id":"1118432","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118432"},{"reference_url":"https://github.com/python/cpython/issues/139700","reference_id":"139700","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/issues/139700"},{"reference_url":"https://github.com/python/cpython/pull/139702","reference_id":"139702","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/pull/139702"},{"reference_url":"https://github.com/python/cpython/commit/162997bb70e067668c039700141770687bc8f267","reference_id":"162997bb70e067668c039700141770687bc8f267","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/162997bb70e067668c039700141770687bc8f267"},{"reference_url":"https://github.com/python/cpython/commit/1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46","reference_id":"1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402342","reference_id":"2402342","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402342"},{"reference_url":"https://github.com/python/cpython/commit/333d4a6f4967d3ace91492a39ededbcf3faa76a6","reference_id":"333d4a6f4967d3ace91492a39ededbcf3faa76a6","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/333d4a6f4967d3ace91492a39ededbcf3faa76a6"},{"reference_url":"https://github.com/python/cpython/commit/76437ac248ad8ca44e9bf697b02b1e2241df2196","reference_id":"76437ac248ad8ca44e9bf697b02b1e2241df2196","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/76437ac248ad8ca44e9bf697b02b1e2241df2196"},{"reference_url":"https://github.com/python/cpython/commit/8392b2f0d35678407d9ce7d95655a5b77de161b4","reference_id":"8392b2f0d35678407d9ce7d95655a5b77de161b4","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/8392b2f0d35678407d9ce7d95655a5b77de161b4"},{"reference_url":"https://github.com/python/cpython/commit/bca11ae7d575d87ed93f5dd6a313be6246e3e388","reference_id":"bca11ae7d575d87ed93f5dd6a313be6246e3e388","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/bca11ae7d575d87ed93f5dd6a313be6246e3e388"},{"reference_url":"https://github.com/python/cpython/commit/d11e69d6203080e3ec450446bfed0516727b85c3","reference_id":"d11e69d6203080e3ec450446bfed0516727b85c3","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/d11e69d6203080e3ec450446bfed0516727b85c3"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/QECOPWMTH4VPPJAXAH2BGTA4XADOP62G/","reference_id":"QECOPWMTH4VPPJAXAH2BGTA4XADOP62G","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/QECOPWMTH4VPPJAXAH2BGTA4XADOP62G/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23323","reference_id":"RHSA-2025:23323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23342","reference_id":"RHSA-2025:23342","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23940","reference_id":"RHSA-2025:23940","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23940"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0123","reference_id":"RHSA-2026:0123","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0123"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0353","reference_id":"RHSA-2026:0353","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0353"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0354","reference_id":"RHSA-2026:0354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0354"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0355","reference_id":"RHSA-2026:0355","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0355"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0414","reference_id":"RHSA-2026:0414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0685","reference_id":"RHSA-2026:0685","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0685"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1652","reference_id":"RHSA-2026:1652","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1652"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1858","reference_id":"RHSA-2026:1858","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1858"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/7886-1/","reference_id":"USN-7886-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7886-1/"},{"reference_url":"https://usn.ubuntu.com/7886-2/","reference_id":"USN-7886-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7886-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936202?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088726?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936182?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2025-8291"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-znkr-fxtj-4uc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/352122?format=json","vulnerability_id":"VCID-zxzn-25zt-ukct","summary":"Mitgation of CVE-2026-4519 was incomplete. If the URL contained \"%action\" the mitigation could be bypassed for certain browser types the \"webbrowser.open()\" API could have commands injected into the underlying shell. See CVE-2026-4519 for details.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4786.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4786.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4786","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0299","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.02998","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0002","scoring_system":"epss","scoring_elements":"0.05385","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0002","scoring_system":"epss","scoring_elements":"0.05347","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0002","scoring_system":"epss","scoring_elements":"0.05427","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4786"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/148169","reference_id":"148169","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/"}],"url":"https://github.com/python/cpython/issues/148169"},{"reference_url":"https://github.com/python/cpython/pull/148170","reference_id":"148170","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/"}],"url":"https://github.com/python/cpython/pull/148170"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2458049","reference_id":"2458049","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2458049"},{"reference_url":"https://github.com/python/cpython/commit/28b4ad38067bbdad34edfcd03ad2de5f06387e53","reference_id":"28b4ad38067bbdad34edfcd03ad2de5f06387e53","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/"}],"url":"https://github.com/python/cpython/commit/28b4ad38067bbdad34edfcd03ad2de5f06387e53"},{"reference_url":"https://github.com/python/cpython/commit/c5767a72838a8dda9d6dc5d3558075b055c56bca","reference_id":"c5767a72838a8dda9d6dc5d3558075b055c56bca","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/"}],"url":"https://github.com/python/cpython/commit/c5767a72838a8dda9d6dc5d3558075b055c56bca"},{"reference_url":"https://github.com/python/cpython/commit/d22922c8a7958353689dc4763dd72da2dea03fff","reference_id":"d22922c8a7958353689dc4763dd72da2dea03fff","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/"}],"url":"https://github.com/python/cpython/commit/d22922c8a7958353689dc4763dd72da2dea03fff"},{"reference_url":"https://github.com/python/cpython/commit/d6d68494be70bdbda20f89f83801ba52ec37daa4","reference_id":"d6d68494be70bdbda20f89f83801ba52ec37daa4","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/"}],"url":"https://github.com/python/cpython/commit/d6d68494be70bdbda20f89f83801ba52ec37daa4"},{"reference_url":"https://github.com/python/cpython/commit/f4654824ae0850ac87227fb270f9057477946769","reference_id":"f4654824ae0850ac87227fb270f9057477946769","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/"}],"url":"https://github.com/python/cpython/commit/f4654824ae0850ac87227fb270f9057477946769"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/","reference_id":"JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10117","reference_id":"RHSA-2026:10117","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10117"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10140","reference_id":"RHSA-2026:10140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10141","reference_id":"RHSA-2026:10141","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10141"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10711","reference_id":"RHSA-2026:10711","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10711"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10745","reference_id":"RHSA-2026:10745","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10745"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10774","reference_id":"RHSA-2026:10774","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10774"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10949","reference_id":"RHSA-2026:10949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10950","reference_id":"RHSA-2026:10950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:10950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11062","reference_id":"RHSA-2026:11062","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:11062"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11077","reference_id":"RHSA-2026:11077","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:11077"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11768","reference_id":"RHSA-2026:11768","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:11768"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9228","reference_id":"RHSA-2026:9228","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9228"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936192?format=json","purl":"pkg:deb/debian/pypy3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936179?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-zh1r-7rzh-2bez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936180?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/936183?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088725?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2026-4786"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zxzn-25zt-ukct"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1%3Fdistro=trixie"}