{"url":"http://public2.vulnerablecode.io/api/packages/402010?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2?arch=s390x&distroversion=v3.21&reponame=community","type":"apk","namespace":"alpine","name":"qt5-qtwebengine","version":"5.15.17-r2","qualifiers":{"arch":"s390x","distroversion":"v3.21","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"5.15.17-r3","latest_non_vulnerable_version":"5.15.17-r7","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64195?format=json","vulnerability_id":"VCID-6swv-ykua-9qe5","summary":"Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7971.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7971.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7971","reference_id":"","reference_type":"","scores":[{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77553","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77562","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01868","scoring_system":"epss","scoring_elements":"0.83471","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01868","scoring_system":"epss","scoring_elements":"0.83465","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01868","scoring_system":"epss","scoring_elements":"0.83457","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7971"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7971","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7971"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2307092","reference_id":"2307092","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2307092"},{"reference_url":"https://issues.chromium.org/issues/360700873","reference_id":"360700873","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-08-26T14:07:05Z/"}],"url":"https://issues.chromium.org/issues/360700873"},{"reference_url":"https://security.gentoo.org/glsa/202501-09","reference_id":"GLSA-202501-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202501-09"},{"reference_url":"https://chromereleases.googleblog.com/2024/08/stable-channel-update-for-desktop_21.html","reference_id":"stable-channel-update-for-desktop_21.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-08-26T14:07:05Z/"}],"url":"https://chromereleases.googleblog.com/2024/08/stable-channel-update-for-desktop_21.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/402010?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2?arch=s390x&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2%3Farch=s390x&distroversion=v3.21&reponame=community"}],"aliases":["CVE-2024-7971"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6swv-ykua-9qe5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64238?format=json","vulnerability_id":"VCID-f86x-65g5-dbcf","summary":"Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8636","reference_id":"","reference_type":"","scores":[{"value":"0.00495","scoring_system":"epss","scoring_elements":"0.66149","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00495","scoring_system":"epss","scoring_elements":"0.66167","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00495","scoring_system":"epss","scoring_elements":"0.66177","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00495","scoring_system":"epss","scoring_elements":"0.66161","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8636"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8636","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8636"},{"reference_url":"https://issues.chromium.org/issues/361461526","reference_id":"361461526","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-13T03:55:16Z/"}],"url":"https://issues.chromium.org/issues/361461526"},{"reference_url":"https://security.gentoo.org/glsa/202501-09","reference_id":"GLSA-202501-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202501-09"},{"reference_url":"https://chromereleases.googleblog.com/2024/09/stable-channel-update-for-desktop_10.html","reference_id":"stable-channel-update-for-desktop_10.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-13T03:55:16Z/"}],"url":"https://chromereleases.googleblog.com/2024/09/stable-channel-update-for-desktop_10.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/402010?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2?arch=s390x&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2%3Farch=s390x&distroversion=v3.21&reponame=community"}],"aliases":["CVE-2024-8636"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f86x-65g5-dbcf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64236?format=json","vulnerability_id":"VCID-p28s-q5t5-m7gw","summary":"Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8198","reference_id":"","reference_type":"","scores":[{"value":"0.00296","scoring_system":"epss","scoring_elements":"0.53255","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00296","scoring_system":"epss","scoring_elements":"0.53266","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00296","scoring_system":"epss","scoring_elements":"0.53274","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00296","scoring_system":"epss","scoring_elements":"0.53257","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00296","scoring_system":"epss","scoring_elements":"0.53231","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8198"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8198","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8198"},{"reference_url":"https://issues.chromium.org/issues/360758697","reference_id":"360758697","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-05T03:55:51Z/"}],"url":"https://issues.chromium.org/issues/360758697"},{"reference_url":"https://security.gentoo.org/glsa/202501-09","reference_id":"GLSA-202501-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202501-09"},{"reference_url":"https://chromereleases.googleblog.com/2024/08/stable-channel-update-for-desktop_28.html","reference_id":"stable-channel-update-for-desktop_28.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-05T03:55:51Z/"}],"url":"https://chromereleases.googleblog.com/2024/08/stable-channel-update-for-desktop_28.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/402010?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2?arch=s390x&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2%3Farch=s390x&distroversion=v3.21&reponame=community"}],"aliases":["CVE-2024-8198"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p28s-q5t5-m7gw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64019?format=json","vulnerability_id":"VCID-r3xc-4duj-nygb","summary":"Out of bounds write in V8 in Google Chrome prior to 124.0.6367.207 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4761.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4761.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-4761","reference_id":"","reference_type":"","scores":[{"value":"0.06293","scoring_system":"epss","scoring_elements":"0.91123","published_at":"2026-06-09T12:55:00Z"},{"value":"0.06293","scoring_system":"epss","scoring_elements":"0.91114","published_at":"2026-06-05T12:55:00Z"},{"value":"0.06293","scoring_system":"epss","scoring_elements":"0.91113","published_at":"2026-06-06T12:55:00Z"},{"value":"0.06293","scoring_system":"epss","scoring_elements":"0.9111","published_at":"2026-06-07T12:55:00Z"},{"value":"0.06293","scoring_system":"epss","scoring_elements":"0.91107","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-4761"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4761","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4761"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2280589","reference_id":"2280589","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2280589"},{"reference_url":"https://issues.chromium.org/issues/339458194","reference_id":"339458194","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-12-19T14:10:45Z/"}],"url":"https://issues.chromium.org/issues/339458194"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/","reference_id":"6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-12-19T14:10:45Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/"},{"reference_url":"https://security.gentoo.org/glsa/202501-09","reference_id":"GLSA-202501-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202501-09"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NTSN22LNYXMWHVTYNOYQVOY7VDZFHENQ/","reference_id":"NTSN22LNYXMWHVTYNOYQVOY7VDZFHENQ","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-12-19T14:10:45Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NTSN22LNYXMWHVTYNOYQVOY7VDZFHENQ/"},{"reference_url":"https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_13.html","reference_id":"stable-channel-update-for-desktop_13.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-12-19T14:10:45Z/"}],"url":"https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_13.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WSUWM73ZCXTN62AT2REYQDD5ZKPFMDZD/","reference_id":"WSUWM73ZCXTN62AT2REYQDD5ZKPFMDZD","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-12-19T14:10:45Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WSUWM73ZCXTN62AT2REYQDD5ZKPFMDZD/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/402010?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2?arch=s390x&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2%3Farch=s390x&distroversion=v3.21&reponame=community"}],"aliases":["CVE-2024-4761"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r3xc-4duj-nygb"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.17-r2%3Farch=s390x&distroversion=v3.21&reponame=community"}