Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community

Type apk

Namespace alpine

Name qt6-qtwebengine

Version 6.10.0-r1

Qualifiers

arch	loongarch64
distroversion	v3.24
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version 6.10.1-r1

Latest_non_vulnerable_version 6.11.1-r2

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-64cd-2hwu-nbeb

vulnerability_id VCID-64cd-2hwu-nbeb

summary Use after free in Safe Browsing in Google Chrome prior to 141.0.7390.107 allowed a remote attacker who had compromised the renderer process to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11756.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11756.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-11756

reference_id

reference_type

scores

value	0.00108
scoring_system	epss
scoring_elements	0.28775
published_at	2026-06-14T12:55:00Z

value	0.00108
scoring_system	epss
scoring_elements	0.28785
published_at	2026-06-13T12:55:00Z

value	0.00108
scoring_system	epss
scoring_elements	0.28762
published_at	2026-06-12T12:55:00Z

value	0.00113
scoring_system	epss
scoring_elements	0.29471
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-11756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11756

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413269
reference_id	2413269
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413269

reference_url

https://issues.chromium.org/issues/447192722

reference_id

447192722

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:17Z/

url

https://issues.chromium.org/issues/447192722

reference_url	https://security.gentoo.org/glsa/202511-04
reference_id	GLSA-202511-04
reference_type
scores
url	https://security.gentoo.org/glsa/202511-04

reference_url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_14.html

reference_id

stable-channel-update-for-desktop_14.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:17Z/

url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_14.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-11756

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-64cd-2hwu-nbeb

url VCID-7164-bchf-27gc

vulnerability_id VCID-7164-bchf-27gc

summary Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12429.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12429.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12429

reference_id

reference_type

scores

value	0.00054
scoring_system	epss
scoring_elements	0.17275
published_at	2026-06-14T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17125
published_at	2026-06-11T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17286
published_at	2026-06-12T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17302
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12429

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12429
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12429

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413856
reference_id	2413856
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413856

reference_url

https://issues.chromium.org/issues/450618029

reference_id

450618029

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-11T04:55:45Z/

url

https://issues.chromium.org/issues/450618029

reference_url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

reference_id

stable-channel-update-for-desktop_28.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-11T04:55:45Z/

url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-12429

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7164-bchf-27gc

url VCID-7j2e-491p-byft

vulnerability_id VCID-7j2e-491p-byft

summary Out of bounds read in WebXR in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12443.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12443.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12443

reference_id

reference_type

scores

value	0.00026
scoring_system	epss
scoring_elements	0.07975
published_at	2026-06-14T12:55:00Z

value	0.00026
scoring_system	epss
scoring_elements	0.07947
published_at	2026-06-11T12:55:00Z

value	0.00026
scoring_system	epss
scoring_elements	0.07982
published_at	2026-06-12T12:55:00Z

value	0.00026
scoring_system	epss
scoring_elements	0.07979
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12443

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12443
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12443

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413850
reference_id	2413850
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413850

reference_url

https://issues.chromium.org/issues/452071845

reference_id

452071845

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-10T21:09:06Z/

url

https://issues.chromium.org/issues/452071845

reference_url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

reference_id

stable-channel-update-for-desktop_28.html

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-10T21:09:06Z/

url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-12443

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7j2e-491p-byft

url VCID-8ebz-e9ug-4bc5

vulnerability_id VCID-8ebz-e9ug-4bc5

summary Out of bounds read in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12441.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12441.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12441

reference_id

reference_type

scores

value	0.00029
scoring_system	epss
scoring_elements	0.08678
published_at	2026-06-14T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08636
published_at	2026-06-11T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08677
published_at	2026-06-12T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08683
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12441

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12441
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12441

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413854
reference_id	2413854
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413854

reference_url

https://issues.chromium.org/issues/444049512

reference_id

444049512

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-10T21:09:43Z/

url

https://issues.chromium.org/issues/444049512

reference_url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

reference_id

stable-channel-update-for-desktop_28.html

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-10T21:09:43Z/

url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-12441

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8ebz-e9ug-4bc5

url VCID-bqcp-st4n-t3gq

vulnerability_id VCID-bqcp-st4n-t3gq

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-24928.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-24928.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-24928

reference_id

reference_type

scores

value	0.00235
scoring_system	epss
scoring_elements	0.46717
published_at	2026-06-14T12:55:00Z

value	0.00235
scoring_system	epss
scoring_elements	0.46576
published_at	2026-06-11T12:55:00Z

value	0.00235
scoring_system	epss
scoring_elements	0.46721
published_at	2026-06-12T12:55:00Z

value	0.00235
scoring_system	epss
scoring_elements	0.46731
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-24928

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24928
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24928

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098321
reference_id	1098321
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098321

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2346421
reference_id	2346421
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2346421

reference_url

https://issues.oss-fuzz.com/issues/392687022

reference_id

392687022

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T03:55:31Z/

url

https://issues.oss-fuzz.com/issues/392687022

reference_url

https://gitlab.gnome.org/GNOME/libxml2/-/issues/847

reference_id

847

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T03:55:31Z/

url

https://gitlab.gnome.org/GNOME/libxml2/-/issues/847

reference_url	https://access.redhat.com/errata/RHSA-2025:2482
reference_id	RHSA-2025:2482
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2482

reference_url	https://access.redhat.com/errata/RHSA-2025:2483
reference_id	RHSA-2025:2483
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2483

reference_url	https://access.redhat.com/errata/RHSA-2025:2507
reference_id	RHSA-2025:2507
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2507

reference_url	https://access.redhat.com/errata/RHSA-2025:2513
reference_id	RHSA-2025:2513
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2513

reference_url	https://access.redhat.com/errata/RHSA-2025:2654
reference_id	RHSA-2025:2654
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2654

reference_url	https://access.redhat.com/errata/RHSA-2025:2660
reference_id	RHSA-2025:2660
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2660

reference_url	https://access.redhat.com/errata/RHSA-2025:2673
reference_id	RHSA-2025:2673
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2673

reference_url	https://access.redhat.com/errata/RHSA-2025:2678
reference_id	RHSA-2025:2678
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2678

reference_url	https://access.redhat.com/errata/RHSA-2025:2679
reference_id	RHSA-2025:2679
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2679

reference_url	https://access.redhat.com/errata/RHSA-2025:2686
reference_id	RHSA-2025:2686
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2686

reference_url	https://access.redhat.com/errata/RHSA-2025:2789
reference_id	RHSA-2025:2789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2789

reference_url	https://access.redhat.com/errata/RHSA-2025:3055
reference_id	RHSA-2025:3055
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3055

reference_url	https://access.redhat.com/errata/RHSA-2025:3297
reference_id	RHSA-2025:3297
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3297

reference_url	https://access.redhat.com/errata/RHSA-2025:3301
reference_id	RHSA-2025:3301
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3301

reference_url	https://access.redhat.com/errata/RHSA-2025:3368
reference_id	RHSA-2025:3368
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3368

reference_url	https://access.redhat.com/errata/RHSA-2025:3397
reference_id	RHSA-2025:3397
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3397

reference_url	https://access.redhat.com/errata/RHSA-2025:3453
reference_id	RHSA-2025:3453
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3453

reference_url	https://access.redhat.com/errata/RHSA-2025:3569
reference_id	RHSA-2025:3569
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3569

reference_url	https://access.redhat.com/errata/RHSA-2025:3573
reference_id	RHSA-2025:3573
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3573

reference_url	https://access.redhat.com/errata/RHSA-2025:3775
reference_id	RHSA-2025:3775
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3775

reference_url	https://access.redhat.com/errata/RHSA-2025:3780
reference_id	RHSA-2025:3780
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3780

reference_url	https://access.redhat.com/errata/RHSA-2025:3867
reference_id	RHSA-2025:3867
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3867

reference_url	https://access.redhat.com/errata/RHSA-2025:4005
reference_id	RHSA-2025:4005
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4005

reference_url	https://access.redhat.com/errata/RHSA-2025:9895
reference_id	RHSA-2025:9895
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9895

reference_url	https://usn.ubuntu.com/7302-1/
reference_id	USN-7302-1
reference_type
scores
url	https://usn.ubuntu.com/7302-1/

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-24928

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bqcp-st4n-t3gq

url VCID-byfq-4ux7-pugz

vulnerability_id VCID-byfq-4ux7-pugz

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6965.json

reference_id

reference_type

scores

value	7.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6965.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-6965

reference_id

reference_type

scores

value	0.01617
scoring_system	epss
scoring_elements	0.82283
published_at	2026-06-14T12:55:00Z

value	0.01629
scoring_system	epss
scoring_elements	0.82356
published_at	2026-06-12T12:55:00Z

value	0.01629
scoring_system	epss
scoring_elements	0.82365
published_at	2026-06-13T12:55:00Z

value	0.01689
scoring_system	epss
scoring_elements	0.82637
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-6965

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6965
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6965

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109379
reference_id	1109379
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109379

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2380149
reference_id	2380149
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2380149

reference_url

https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8

reference_id

5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8

reference_type

scores

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/S:N/AU:N/R:U/V:D/RE:L/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-15T13:55:28Z/

url

https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/52499.py
reference_id	CVE-2025-6965
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/52499.py

reference_url	https://access.redhat.com/errata/RHSA-2025:11802
reference_id	RHSA-2025:11802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11802

reference_url	https://access.redhat.com/errata/RHSA-2025:11803
reference_id	RHSA-2025:11803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11803

reference_url	https://access.redhat.com/errata/RHSA-2025:11933
reference_id	RHSA-2025:11933
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11933

reference_url	https://access.redhat.com/errata/RHSA-2025:11992
reference_id	RHSA-2025:11992
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11992

reference_url	https://access.redhat.com/errata/RHSA-2025:12010
reference_id	RHSA-2025:12010
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12010

reference_url	https://access.redhat.com/errata/RHSA-2025:12036
reference_id	RHSA-2025:12036
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12036

reference_url	https://access.redhat.com/errata/RHSA-2025:12349
reference_id	RHSA-2025:12349
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12349

reference_url	https://access.redhat.com/errata/RHSA-2025:12521
reference_id	RHSA-2025:12521
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12521

reference_url	https://access.redhat.com/errata/RHSA-2025:12522
reference_id	RHSA-2025:12522
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12522

reference_url	https://access.redhat.com/errata/RHSA-2025:12749
reference_id	RHSA-2025:12749
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12749

reference_url	https://access.redhat.com/errata/RHSA-2025:12901
reference_id	RHSA-2025:12901
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12901

reference_url	https://access.redhat.com/errata/RHSA-2025:12904
reference_id	RHSA-2025:12904
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12904

reference_url	https://access.redhat.com/errata/RHSA-2025:12905
reference_id	RHSA-2025:12905
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12905

reference_url	https://access.redhat.com/errata/RHSA-2025:13267
reference_id	RHSA-2025:13267
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13267

reference_url	https://access.redhat.com/errata/RHSA-2025:13335
reference_id	RHSA-2025:13335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13335

reference_url	https://access.redhat.com/errata/RHSA-2025:14101
reference_id	RHSA-2025:14101
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:14101

reference_url	https://access.redhat.com/errata/RHSA-2025:15397
reference_id	RHSA-2025:15397
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:15397

reference_url	https://access.redhat.com/errata/RHSA-2025:15827
reference_id	RHSA-2025:15827
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:15827

reference_url	https://access.redhat.com/errata/RHSA-2025:15828
reference_id	RHSA-2025:15828
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:15828

reference_url	https://access.redhat.com/errata/RHSA-2025:18217
reference_id	RHSA-2025:18217
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:18217

reference_url	https://access.redhat.com/errata/RHSA-2025:18218
reference_id	RHSA-2025:18218
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:18218

reference_url	https://access.redhat.com/errata/RHSA-2025:18219
reference_id	RHSA-2025:18219
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:18219

reference_url	https://access.redhat.com/errata/RHSA-2025:18240
reference_id	RHSA-2025:18240
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:18240

reference_url	https://access.redhat.com/errata/RHSA-2025:19041
reference_id	RHSA-2025:19041
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19041

reference_url	https://access.redhat.com/errata/RHSA-2025:19046
reference_id	RHSA-2025:19046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19046

reference_url	https://access.redhat.com/errata/RHSA-2025:19894
reference_id	RHSA-2025:19894
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19894

reference_url	https://access.redhat.com/errata/RHSA-2025:20936
reference_id	RHSA-2025:20936
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20936

reference_url	https://access.redhat.com/errata/RHSA-2025:21885
reference_id	RHSA-2025:21885
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:21885

reference_url	https://access.redhat.com/errata/RHSA-2025:21913
reference_id	RHSA-2025:21913
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:21913

reference_url	https://access.redhat.com/errata/RHSA-2025:21994
reference_id	RHSA-2025:21994
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:21994

reference_url	https://access.redhat.com/errata/RHSA-2025:22529
reference_id	RHSA-2025:22529
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22529

reference_url	https://access.redhat.com/errata/RHSA-2025:22548
reference_id	RHSA-2025:22548
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22548

reference_url	https://access.redhat.com/errata/RHSA-2025:22868
reference_id	RHSA-2025:22868
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22868

reference_url	https://access.redhat.com/errata/RHSA-2025:23078
reference_id	RHSA-2025:23078
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23078

reference_url	https://access.redhat.com/errata/RHSA-2025:23079
reference_id	RHSA-2025:23079
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23079

reference_url	https://access.redhat.com/errata/RHSA-2025:23080
reference_id	RHSA-2025:23080
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23080

reference_url	https://access.redhat.com/errata/RHSA-2025:23248
reference_id	RHSA-2025:23248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23248

reference_url	https://access.redhat.com/errata/RHSA-2026:0001
reference_id	RHSA-2026:0001
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0001

reference_url	https://access.redhat.com/errata/RHSA-2026:0076
reference_id	RHSA-2026:0076
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0076

reference_url	https://access.redhat.com/errata/RHSA-2026:0077
reference_id	RHSA-2026:0077
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0077

reference_url	https://access.redhat.com/errata/RHSA-2026:0078
reference_id	RHSA-2026:0078
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0078

reference_url	https://access.redhat.com/errata/RHSA-2026:0934
reference_id	RHSA-2026:0934
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0934

reference_url	https://access.redhat.com/errata/RHSA-2026:1652
reference_id	RHSA-2026:1652
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1652

reference_url	https://access.redhat.com/errata/RHSA-2026:3461
reference_id	RHSA-2026:3461
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3461

reference_url	https://access.redhat.com/errata/RHSA-2026:3462
reference_id	RHSA-2026:3462
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3462

reference_url	https://access.redhat.com/errata/RHSA-2026:6481
reference_id	RHSA-2026:6481
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6481

reference_url	https://usn.ubuntu.com/7676-1/
reference_id	USN-7676-1
reference_type
scores
url	https://usn.ubuntu.com/7676-1/

reference_url	https://usn.ubuntu.com/7679-1/
reference_id	USN-7679-1
reference_type
scores
url	https://usn.ubuntu.com/7679-1/

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-6965

risk_score 10.0

exploitability 2.0

weighted_severity 6.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-byfq-4ux7-pugz

url VCID-c5vg-smu1-xue9

vulnerability_id VCID-c5vg-smu1-xue9

summary Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. (Chromium security severity: Low)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-11216

reference_id

reference_type

scores

value	0.0003
scoring_system	epss
scoring_elements	0.09132
published_at	2026-06-14T12:55:00Z

value	0.0003
scoring_system	epss
scoring_elements	0.09144
published_at	2026-06-13T12:55:00Z

value	0.00031
scoring_system	epss
scoring_elements	0.09555
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-11216

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11216
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11216

reference_url

https://issues.chromium.org/issues/419721056

reference_id

419721056

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-07T13:43:06Z/

url

https://issues.chromium.org/issues/419721056

reference_url	https://security.gentoo.org/glsa/202511-04
reference_id	GLSA-202511-04
reference_type
scores
url	https://security.gentoo.org/glsa/202511-04

reference_url

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html

reference_id

stable-channel-update-for-desktop_30.html

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-07T13:43:06Z/

url

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-11216

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c5vg-smu1-xue9

url VCID-fbnf-z1sj-xyds

vulnerability_id VCID-fbnf-z1sj-xyds

summary Use after free in Storage in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to execute arbitrary code via a crafted video file. (Chromium security severity: High)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11460.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11460.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-11460

reference_id

reference_type

scores

value	0.00125
scoring_system	epss
scoring_elements	0.31241
published_at	2026-06-11T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32673
published_at	2026-06-14T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32675
published_at	2026-06-12T12:55:00Z

value	0.00133
scoring_system	epss
scoring_elements	0.32696
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-11460

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11460
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11460

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413252
reference_id	2413252
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413252

reference_url

https://issues.chromium.org/issues/446722008

reference_id

446722008

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:15Z/

url

https://issues.chromium.org/issues/446722008

reference_url	https://security.gentoo.org/glsa/202511-04
reference_id	GLSA-202511-04
reference_type
scores
url	https://security.gentoo.org/glsa/202511-04

reference_url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop.html

reference_id

stable-channel-update-for-desktop.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:15Z/

url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-11460

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fbnf-z1sj-xyds

url VCID-fdrt-fmsf-mqdc

vulnerability_id VCID-fdrt-fmsf-mqdc

summary Side-channel information leakage in Storage in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11207.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11207.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-11207

reference_id

reference_type

scores

value	0.00052
scoring_system	epss
scoring_elements	0.16929
published_at	2026-06-14T12:55:00Z

value	0.00052
scoring_system	epss
scoring_elements	0.16954
published_at	2026-06-13T12:55:00Z

value	0.00052
scoring_system	epss
scoring_elements	0.16942
published_at	2026-06-12T12:55:00Z

value	0.00055
scoring_system	epss
scoring_elements	0.17547
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-11207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11207
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11207

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413260
reference_id	2413260
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413260

reference_url

https://issues.chromium.org/issues/428189824

reference_id

428189824

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-12T20:57:34Z/

url

https://issues.chromium.org/issues/428189824

reference_url	https://security.gentoo.org/glsa/202511-04
reference_id	GLSA-202511-04
reference_type
scores
url	https://security.gentoo.org/glsa/202511-04

reference_url

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html

reference_id

stable-channel-update-for-desktop_30.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-12T20:57:34Z/

url

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-11207

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fdrt-fmsf-mqdc

url VCID-fe4e-z3h6-gyft

vulnerability_id VCID-fe4e-z3h6-gyft

summary Out of bounds memory access in V8 in Google Chrome prior to 141.0.7390.122 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12036.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12036.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12036

reference_id

reference_type

scores

value	0.00079
scoring_system	epss
scoring_elements	0.23715
published_at	2026-06-14T12:55:00Z

value	0.00079
scoring_system	epss
scoring_elements	0.23736
published_at	2026-06-13T12:55:00Z

value	0.00079
scoring_system	epss
scoring_elements	0.23726
published_at	2026-06-12T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24292
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12036

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413259
reference_id	2413259
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413259

reference_url

https://issues.chromium.org/issues/452296415

reference_id

452296415

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:14Z/

url

https://issues.chromium.org/issues/452296415

reference_url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_21.html

reference_id

stable-channel-update-for-desktop_21.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:14Z/

url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_21.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-12036

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fe4e-z3h6-gyft

url VCID-fg65-yj32-vfad

vulnerability_id VCID-fg65-yj32-vfad

summary Heap buffer overflow in Sync in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11458.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11458.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-11458

reference_id

reference_type

scores

value	0.00046
scoring_system	epss
scoring_elements	0.14881
published_at	2026-06-14T12:55:00Z

value	0.00046
scoring_system	epss
scoring_elements	0.1491
published_at	2026-06-13T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15548
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-11458

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11458
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11458

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413261
reference_id	2413261
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413261

reference_url

https://issues.chromium.org/issues/443196747

reference_id

443196747

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:18Z/

url

https://issues.chromium.org/issues/443196747

reference_url	https://security.gentoo.org/glsa/202511-04
reference_id	GLSA-202511-04
reference_type
scores
url	https://security.gentoo.org/glsa/202511-04

reference_url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop.html

reference_id

stable-channel-update-for-desktop.html

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:18Z/

url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-11458

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fg65-yj32-vfad

url VCID-h451-p9ys-9fdu

vulnerability_id VCID-h451-p9ys-9fdu

summary Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12433.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12433.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12433

reference_id

reference_type

scores

value	0.0002
scoring_system	epss
scoring_elements	0.05859
published_at	2026-06-14T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05849
published_at	2026-06-11T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05875
published_at	2026-06-12T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05866
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12433

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12433
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12433

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413867
reference_id	2413867
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413867

reference_url

https://issues.chromium.org/issues/449760249

reference_id

449760249

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-10T21:10:25Z/

url

https://issues.chromium.org/issues/449760249

reference_url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

reference_id

stable-channel-update-for-desktop_28.html

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-10T21:10:25Z/

url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-12433

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h451-p9ys-9fdu

url VCID-j4fe-rbnp-r3e5

vulnerability_id VCID-j4fe-rbnp-r3e5

summary Inappropriate implementation in Views in Google Chrome on Windows prior to 142.0.7444.137 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12726

reference_id

reference_type

scores

value	0.00123
scoring_system	epss
scoring_elements	0.31208
published_at	2026-06-14T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31017
published_at	2026-06-11T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31211
published_at	2026-06-12T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31226
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12726
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12726

reference_url

https://issues.chromium.org/issues/447172715

reference_id

447172715

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-11T04:55:41Z/

url

https://issues.chromium.org/issues/447172715

reference_url

https://chromereleases.googleblog.com/2025/11/stable-channel-update-for-desktop.html

reference_id

stable-channel-update-for-desktop.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-11T04:55:41Z/

url

https://chromereleases.googleblog.com/2025/11/stable-channel-update-for-desktop.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-12726

risk_score 2.2

exploitability 0.5

weighted_severity 4.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j4fe-rbnp-r3e5

url VCID-seup-jszb-37d5

vulnerability_id VCID-seup-jszb-37d5

summary Use after free in V8 in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Low)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11219.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11219.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-11219

reference_id

reference_type

scores

value	0.00035
scoring_system	epss
scoring_elements	0.10825
published_at	2026-06-14T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10856
published_at	2026-06-13T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.1086
published_at	2026-06-12T12:55:00Z

value	0.00037
scoring_system	epss
scoring_elements	0.11346
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-11219

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11219
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11219

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413258
reference_id	2413258
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413258

reference_url

https://issues.chromium.org/issues/439772737

reference_id

439772737

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-07T13:36:31Z/

url

https://issues.chromium.org/issues/439772737

reference_url	https://security.gentoo.org/glsa/202511-04
reference_id	GLSA-202511-04
reference_type
scores
url	https://security.gentoo.org/glsa/202511-04

reference_url

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html

reference_id

stable-channel-update-for-desktop_30.html

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-07T13:36:31Z/

url

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-11219

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-seup-jszb-37d5

url VCID-xy3e-9sr4-2fch

vulnerability_id VCID-xy3e-9sr4-2fch

summary Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.7444.59 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12438.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12438.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12438

reference_id

reference_type

scores

value	0.00119
scoring_system	epss
scoring_elements	0.30576
published_at	2026-06-14T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30373
published_at	2026-06-11T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.3057
published_at	2026-06-12T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30589
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12438

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12438
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12438

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413868
reference_id	2413868
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413868

reference_url

https://issues.chromium.org/issues/433027577

reference_id

433027577

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-11T04:55:42Z/

url

https://issues.chromium.org/issues/433027577

reference_url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

reference_id

stable-channel-update-for-desktop_28.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-11T04:55:42Z/

url

https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-12438

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xy3e-9sr4-2fch

url VCID-yuv3-2xfx-hqc4

vulnerability_id VCID-yuv3-2xfx-hqc4

summary Heap buffer overflow in Video in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11206.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11206.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-11206

reference_id

reference_type

scores

value	0.00097
scoring_system	epss
scoring_elements	0.26907
published_at	2026-06-14T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26924
published_at	2026-06-13T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.2691
published_at	2026-06-12T12:55:00Z

value	0.00102
scoring_system	epss
scoring_elements	0.27464
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-11206

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11206
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11206

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2413262
reference_id	2413262
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2413262

reference_url

https://issues.chromium.org/issues/444755026

reference_id

444755026

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:16Z/

url

https://issues.chromium.org/issues/444755026

reference_url	https://security.gentoo.org/glsa/202511-04
reference_id	GLSA-202511-04
reference_type
scores
url	https://security.gentoo.org/glsa/202511-04

reference_url

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html

reference_id

stable-channel-update-for-desktop_30.html

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:16Z/

url

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html

fixed_packages

url	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
purl	pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=loongarch64&distroversion=v3.24&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

aliases CVE-2025-11206

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yuv3-2xfx-hqc4

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=loongarch64&distroversion=v3.24&reponame=community

Package Instance