{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","type":"apk","namespace":"alpine","name":"xen","version":"4.14.0-r1","qualifiers":{"arch":"armhf","distroversion":"v3.15","reponame":"main"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"4.14.0-r2","latest_non_vulnerable_version":"4.15.5-r3","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/376?format=json","vulnerability_id":"VCID-29ts-z6d6-kqag","summary":"once valid event channels may not turn invalid","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25597","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28835","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25597"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.gentoo.org/glsa/202011-06","reference_id":"GLSA-202011-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-06"},{"reference_url":"https://usn.ubuntu.com/5617-1/","reference_id":"USN-5617-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5617-1/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-338.html","reference_id":"XSA-338","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-338.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}],"aliases":["CVE-2020-25597","XSA-338"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-29ts-z6d6-kqag"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/378?format=json","vulnerability_id":"VCID-8zuu-8mhv-cyfc","summary":"Missing memory barriers when accessing/allocating an event channel","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25603","reference_id":"","reference_type":"","scores":[{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22061","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25603"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.gentoo.org/glsa/202011-06","reference_id":"GLSA-202011-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-06"},{"reference_url":"https://usn.ubuntu.com/5617-1/","reference_id":"USN-5617-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5617-1/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-340.html","reference_id":"XSA-340","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-340.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}],"aliases":["CVE-2020-25603","XSA-340"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8zuu-8mhv-cyfc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/374?format=json","vulnerability_id":"VCID-chpd-pt4k-duar","summary":"race when migrating timers between x86 HVM vCPU-s","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25604","reference_id":"","reference_type":"","scores":[{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21943","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25604"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.gentoo.org/glsa/202011-06","reference_id":"GLSA-202011-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-06"},{"reference_url":"https://usn.ubuntu.com/5617-1/","reference_id":"USN-5617-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5617-1/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-336.html","reference_id":"XSA-336","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-336.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}],"aliases":["CVE-2020-25604","XSA-336"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-chpd-pt4k-duar"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/380?format=json","vulnerability_id":"VCID-g9m5-kp2u-zff9","summary":"races with evtchn_reset()","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25599","reference_id":"","reference_type":"","scores":[{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22441","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25599"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.gentoo.org/glsa/202011-06","reference_id":"GLSA-202011-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-06"},{"reference_url":"https://usn.ubuntu.com/5617-1/","reference_id":"USN-5617-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5617-1/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-343.html","reference_id":"XSA-343","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-343.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}],"aliases":["CVE-2020-25599","XSA-343"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g9m5-kp2u-zff9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/381?format=json","vulnerability_id":"VCID-h36m-nbwm-43he","summary":"lack of preemption in evtchn_reset() / evtchn_destroy()","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25601","reference_id":"","reference_type":"","scores":[{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.22836","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25601"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.gentoo.org/glsa/202011-06","reference_id":"GLSA-202011-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-06"},{"reference_url":"https://usn.ubuntu.com/5617-1/","reference_id":"USN-5617-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5617-1/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-344.html","reference_id":"XSA-344","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-344.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}],"aliases":["CVE-2020-25601","XSA-344"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h36m-nbwm-43he"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/372?format=json","vulnerability_id":"VCID-k2gw-ze9b-3fgh","summary":"Missing unlock in XENMEM_acquire_resource error path","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25598","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22254","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25598"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.gentoo.org/glsa/202011-06","reference_id":"GLSA-202011-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-06"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-334.html","reference_id":"XSA-334","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-334.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}],"aliases":["CVE-2020-25598","XSA-334"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k2gw-ze9b-3fgh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/379?format=json","vulnerability_id":"VCID-r8re-stnx-abak","summary":"out of bounds event channels available to 32-bit x86 domains","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25600","reference_id":"","reference_type":"","scores":[{"value":"0.001","scoring_system":"epss","scoring_elements":"0.27442","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25600"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.gentoo.org/glsa/202011-06","reference_id":"GLSA-202011-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-06"},{"reference_url":"https://usn.ubuntu.com/5617-1/","reference_id":"USN-5617-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5617-1/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-342.html","reference_id":"XSA-342","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-342.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}],"aliases":["CVE-2020-25600","XSA-342"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r8re-stnx-abak"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/371?format=json","vulnerability_id":"VCID-xe1h-4u4f-c3f6","summary":"x86 pv: Crash when handling guest access to MSR_MISC_ENABLE","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25602","reference_id":"","reference_type":"","scores":[{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23882","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25602"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.gentoo.org/glsa/202011-06","reference_id":"GLSA-202011-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-06"},{"reference_url":"https://usn.ubuntu.com/5617-1/","reference_id":"USN-5617-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5617-1/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-333.html","reference_id":"XSA-333","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-333.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}],"aliases":["CVE-2020-25602","XSA-333"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xe1h-4u4f-c3f6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/377?format=json","vulnerability_id":"VCID-zzkn-d3zd-kkfg","summary":"x86 pv guest kernel DoS via SYSENTER","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25596","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24824","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25596"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.gentoo.org/glsa/202011-06","reference_id":"GLSA-202011-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-06"},{"reference_url":"https://usn.ubuntu.com/5617-1/","reference_id":"USN-5617-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5617-1/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-339.html","reference_id":"XSA-339","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-339.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/225532?format=json","purl":"pkg:apk/alpine/xen@4.14.0-r1?arch=armhf&distroversion=v3.15&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}],"aliases":["CVE-2020-25596","XSA-339"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zzkn-d3zd-kkfg"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.14.0-r1%3Farch=armhf&distroversion=v3.15&reponame=main"}