{"url":"http://public2.vulnerablecode.io/api/packages/195715?format=json","purl":"pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=x86_64&distroversion=edge&reponame=community","type":"apk","namespace":"alpine","name":"qt6-qtwebengine","version":"6.10.0-r1","qualifiers":{"arch":"x86_64","distroversion":"edge","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"6.10.1-r2","latest_non_vulnerable_version":"6.11.1-r1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/122628?format=json","vulnerability_id":"VCID-64cd-2hwu-nbeb","summary":"Use after free in Safe Browsing in Google Chrome prior to 141.0.7390.107 allowed a remote attacker who had compromised the renderer process to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11756.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11756.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11756","reference_id":"","reference_type":"","scores":[{"value":"0.00113","scoring_system":"epss","scoring_elements":"0.29471","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11756"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11756","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11756"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413269","reference_id":"2413269","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413269"},{"reference_url":"https://issues.chromium.org/issues/447192722","reference_id":"447192722","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:17Z/"}],"url":"https://issues.chromium.org/issues/447192722"},{"reference_url":"https://security.gentoo.org/glsa/202511-04","reference_id":"GLSA-202511-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202511-04"},{"reference_url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_14.html","reference_id":"stable-channel-update-for-desktop_14.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:17Z/"}],"url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_14.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195715?format=json","purl":"pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2025-11756"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-64cd-2hwu-nbeb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/95919?format=json","vulnerability_id":"VCID-7j2e-491p-byft","summary":"Out of bounds read in WebXR in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12443.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12443.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-12443","reference_id":"","reference_type":"","scores":[{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07947","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-12443"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12443","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12443"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413850","reference_id":"2413850","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413850"},{"reference_url":"https://issues.chromium.org/issues/452071845","reference_id":"452071845","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-10T21:09:06Z/"}],"url":"https://issues.chromium.org/issues/452071845"},{"reference_url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html","reference_id":"stable-channel-update-for-desktop_28.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-10T21:09:06Z/"}],"url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195715?format=json","purl":"pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2025-12443"],"risk_score":1.3,"exploitability":"0.5","weighted_severity":"2.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7j2e-491p-byft"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/23331?format=json","vulnerability_id":"VCID-bqcp-st4n-t3gq","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-24928.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-24928.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-24928","reference_id":"","reference_type":"","scores":[{"value":"0.00235","scoring_system":"epss","scoring_elements":"0.46576","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-24928"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24928","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24928"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098321","reference_id":"1098321","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098321"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2346421","reference_id":"2346421","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2346421"},{"reference_url":"https://issues.oss-fuzz.com/issues/392687022","reference_id":"392687022","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T03:55:31Z/"}],"url":"https://issues.oss-fuzz.com/issues/392687022"},{"reference_url":"https://gitlab.gnome.org/GNOME/libxml2/-/issues/847","reference_id":"847","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T03:55:31Z/"}],"url":"https://gitlab.gnome.org/GNOME/libxml2/-/issues/847"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2482","reference_id":"RHSA-2025:2482","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2482"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2483","reference_id":"RHSA-2025:2483","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2507","reference_id":"RHSA-2025:2507","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2507"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2513","reference_id":"RHSA-2025:2513","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2513"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2654","reference_id":"RHSA-2025:2654","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2654"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2660","reference_id":"RHSA-2025:2660","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2660"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2673","reference_id":"RHSA-2025:2673","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2673"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2678","reference_id":"RHSA-2025:2678","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2678"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2679","reference_id":"RHSA-2025:2679","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2679"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2686","reference_id":"RHSA-2025:2686","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2686"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2789","reference_id":"RHSA-2025:2789","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2789"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3055","reference_id":"RHSA-2025:3055","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3055"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3297","reference_id":"RHSA-2025:3297","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3297"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3301","reference_id":"RHSA-2025:3301","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3301"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3368","reference_id":"RHSA-2025:3368","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3368"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3397","reference_id":"RHSA-2025:3397","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3397"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3453","reference_id":"RHSA-2025:3453","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3453"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3569","reference_id":"RHSA-2025:3569","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3569"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3573","reference_id":"RHSA-2025:3573","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3573"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3775","reference_id":"RHSA-2025:3775","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3775"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3780","reference_id":"RHSA-2025:3780","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3780"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3867","reference_id":"RHSA-2025:3867","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3867"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:4005","reference_id":"RHSA-2025:4005","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:4005"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9895","reference_id":"RHSA-2025:9895","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9895"},{"reference_url":"https://usn.ubuntu.com/7302-1/","reference_id":"USN-7302-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7302-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195715?format=json","purl":"pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2025-24928"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bqcp-st4n-t3gq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/122622?format=json","vulnerability_id":"VCID-fbnf-z1sj-xyds","summary":"Use after free in Storage in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to execute arbitrary code via a crafted video file. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11460.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11460.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11460","reference_id":"","reference_type":"","scores":[{"value":"0.00125","scoring_system":"epss","scoring_elements":"0.31241","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11460"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11460","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11460"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413252","reference_id":"2413252","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413252"},{"reference_url":"https://issues.chromium.org/issues/446722008","reference_id":"446722008","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:15Z/"}],"url":"https://issues.chromium.org/issues/446722008"},{"reference_url":"https://security.gentoo.org/glsa/202511-04","reference_id":"GLSA-202511-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202511-04"},{"reference_url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:15Z/"}],"url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195715?format=json","purl":"pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2025-11460"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fbnf-z1sj-xyds"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/122505?format=json","vulnerability_id":"VCID-fdrt-fmsf-mqdc","summary":"Side-channel information leakage in Storage in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11207.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11207.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11207","reference_id":"","reference_type":"","scores":[{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17547","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11207"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413260","reference_id":"2413260","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413260"},{"reference_url":"https://issues.chromium.org/issues/428189824","reference_id":"428189824","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-12T20:57:34Z/"}],"url":"https://issues.chromium.org/issues/428189824"},{"reference_url":"https://security.gentoo.org/glsa/202511-04","reference_id":"GLSA-202511-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202511-04"},{"reference_url":"https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html","reference_id":"stable-channel-update-for-desktop_30.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-12T20:57:34Z/"}],"url":"https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195715?format=json","purl":"pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2025-11207"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fdrt-fmsf-mqdc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96444?format=json","vulnerability_id":"VCID-fe4e-z3h6-gyft","summary":"Out of bounds memory access in V8 in Google Chrome prior to 141.0.7390.122 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12036.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12036.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-12036","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24292","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-12036"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12036","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12036"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413259","reference_id":"2413259","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413259"},{"reference_url":"https://issues.chromium.org/issues/452296415","reference_id":"452296415","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:14Z/"}],"url":"https://issues.chromium.org/issues/452296415"},{"reference_url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_21.html","reference_id":"stable-channel-update-for-desktop_21.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:14Z/"}],"url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_21.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195715?format=json","purl":"pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2025-12036"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fe4e-z3h6-gyft"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/122244?format=json","vulnerability_id":"VCID-fg65-yj32-vfad","summary":"Heap buffer overflow in Sync in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11458.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11458.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11458","reference_id":"","reference_type":"","scores":[{"value":"0.00049","scoring_system":"epss","scoring_elements":"0.15548","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11458"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11458","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11458"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413261","reference_id":"2413261","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413261"},{"reference_url":"https://issues.chromium.org/issues/443196747","reference_id":"443196747","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:18Z/"}],"url":"https://issues.chromium.org/issues/443196747"},{"reference_url":"https://security.gentoo.org/glsa/202511-04","reference_id":"GLSA-202511-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202511-04"},{"reference_url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-11-08T04:55:18Z/"}],"url":"https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195715?format=json","purl":"pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2025-11458"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fg65-yj32-vfad"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/122362?format=json","vulnerability_id":"VCID-seup-jszb-37d5","summary":"Use after free in V8 in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11219.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11219.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11219","reference_id":"","reference_type":"","scores":[{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11346","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11219"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11219","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11219"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413258","reference_id":"2413258","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2413258"},{"reference_url":"https://issues.chromium.org/issues/439772737","reference_id":"439772737","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-07T13:36:31Z/"}],"url":"https://issues.chromium.org/issues/439772737"},{"reference_url":"https://security.gentoo.org/glsa/202511-04","reference_id":"GLSA-202511-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202511-04"},{"reference_url":"https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html","reference_id":"stable-channel-update-for-desktop_30.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-07T13:36:31Z/"}],"url":"https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/195715?format=json","purl":"pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2025-11219"],"risk_score":0.9,"exploitability":"0.5","weighted_severity":"1.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-seup-jszb-37d5"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.10.0-r1%3Farch=x86_64&distroversion=edge&reponame=community"}