{"url":"http://public2.vulnerablecode.io/api/packages/121306?format=json","purl":"pkg:deb/debian/openssh@1:10.0p1-1?distro=trixie","type":"deb","namespace":"debian","name":"openssh","version":"1:10.0p1-1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1:10.0p1-7+deb13u1","latest_non_vulnerable_version":"1:10.3p1-4","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/83523?format=json","vulnerability_id":"VCID-7g2y-6r3w-wbg1","summary":"openssh: OpenSSH SSHD Agent Forwarding and X11 Forwarding","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32728.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32728.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-32728","reference_id":"","reference_type":"","scores":[{"value":"0.00226","scoring_system":"epss","scoring_elements":"0.45443","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00226","scoring_system":"epss","scoring_elements":"0.45471","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00226","scoring_system":"epss","scoring_elements":"0.45474","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00226","scoring_system":"epss","scoring_elements":"0.45454","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00226","scoring_system":"epss","scoring_elements":"0.45429","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-32728"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32728","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32728"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://ftp.openbsd.org/pub/OpenBSD/patches/7.6/common/013_ssh.patch.sig","reference_id":"013_ssh.patch.sig","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-10T18:35:34Z/"}],"url":"https://ftp.openbsd.org/pub/OpenBSD/patches/7.6/common/013_ssh.patch.sig"},{"reference_url":"https://lists.mindrot.org/pipermail/openssh-unix-dev/2025-April/041879.html","reference_id":"041879.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-10T18:35:34Z/"}],"url":"https://lists.mindrot.org/pipermail/openssh-unix-dev/2025-April/041879.html"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102603","reference_id":"1102603","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102603"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2358767","reference_id":"2358767","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2358767"},{"reference_url":"https://github.com/openssh/openssh-portable/commit/fc86875e6acb36401dfc1dfb6b628a9d1460f367","reference_id":"fc86875e6acb36401dfc1dfb6b628a9d1460f367","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-10T18:35:34Z/"}],"url":"https://github.com/openssh/openssh-portable/commit/fc86875e6acb36401dfc1dfb6b628a9d1460f367"},{"reference_url":"https://www.openssh.com/txt/release-10.0","reference_id":"release-10.0","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-10T18:35:34Z/"}],"url":"https://www.openssh.com/txt/release-10.0"},{"reference_url":"https://www.openssh.com/txt/release-7.4","reference_id":"release-7.4","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-10T18:35:34Z/"}],"url":"https://www.openssh.com/txt/release-7.4"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20126","reference_id":"RHSA-2025:20126","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:20126"},{"reference_url":"https://usn.ubuntu.com/7457-1/","reference_id":"USN-7457-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7457-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/121187?format=json","purl":"pkg:deb/debian/openssh@1:8.4p1-5%2Bdeb11u3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ku5v-32rk-5qbv"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:8.4p1-5%252Bdeb11u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/121304?format=json","purl":"pkg:deb/debian/openssh@1:8.4p1-5%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:8.4p1-5%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/121303?format=json","purl":"pkg:deb/debian/openssh@1:9.2p1-2%2Bdeb12u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:9.2p1-2%252Bdeb12u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/121185?format=json","purl":"pkg:deb/debian/openssh@1:9.2p1-2%2Bdeb12u10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:9.2p1-2%252Bdeb12u10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/121306?format=json","purl":"pkg:deb/debian/openssh@1:10.0p1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:10.0p1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/121190?format=json","purl":"pkg:deb/debian/openssh@1:10.0p1-7%2Bdeb13u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:10.0p1-7%252Bdeb13u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/121188?format=json","purl":"pkg:deb/debian/openssh@1:10.3p1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:10.3p1-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/121189?format=json","purl":"pkg:deb/debian/openssh@1:10.3p1-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:10.3p1-4%3Fdistro=trixie"}],"aliases":["CVE-2025-32728"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7g2y-6r3w-wbg1"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:10.0p1-1%3Fdistro=trixie"}