Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/44518?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "type": "deb", "namespace": "debian", "name": "grub2", "version": "2.06-13+deb12u2", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "2.12~rc1-11", "latest_non_vulnerable_version": "2.14-2", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/25605?format=api", "vulnerability_id": "VCID-19fk-tpf7-3keh", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-54770.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-54770.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-54770", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05536", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05563", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-54770" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54770", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54770" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968", "reference_id": "1120968", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-54770", "reference_id": "CVE-2025-54770", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:33:53Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-54770" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html", "reference_id": "msg00155.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:33:53Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413813", "reference_id": "show_bug.cgi?id=2413813", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:33:53Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413813" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44539?format=api", "purl": "pkg:deb/debian/grub2@2.14-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-54770" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-19fk-tpf7-3keh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/25760?format=api", "vulnerability_id": "VCID-3c3v-t8fw-a3bp", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-61661.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-61661.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61661", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0809", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.08056", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61661" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61661", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61661" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968", "reference_id": "1120968", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-61661", "reference_id": "CVE-2025-61661", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:18:04Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-61661" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413827", "reference_id": "show_bug.cgi?id=2413827", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:18:04Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413827" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44539?format=api", "purl": "pkg:deb/debian/grub2@2.14-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-61661" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3c3v-t8fw-a3bp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/25761?format=api", "vulnerability_id": "VCID-e8d4-fx3j-1ud8", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-61662.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-61662.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61662", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04369", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04365", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61662" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61662", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61662" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968", "reference_id": "1120968", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el8", "reference_id": "cpe:/a:redhat:openshift:4.12::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9", "reference_id": "cpe:/a:redhat:openshift:4.13::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9", "reference_id": "cpe:/a:redhat:openshift:4.14::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9", "reference_id": "cpe:/a:redhat:openshift:4.15::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9", "reference_id": "cpe:/a:redhat:openshift:4.16::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9", "reference_id": "cpe:/a:redhat:openshift:4.17::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.18::el9", "reference_id": "cpe:/a:redhat:openshift:4.18::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.18::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.19::el9", "reference_id": "cpe:/a:redhat:openshift:4.19::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.19::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:8::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.2::baseos", "reference_id": "cpe:/o:redhat:rhel_aus:8.2::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.2::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.4::baseos", "reference_id": "cpe:/o:redhat:rhel_aus:8.4::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.4::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.6::baseos", "reference_id": "cpe:/o:redhat:rhel_aus:8.6::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.6::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:8.6::baseos", "reference_id": "cpe:/o:redhat:rhel_e4s:8.6::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:8.6::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:8.8::baseos", "reference_id": "cpe:/o:redhat:rhel_e4s:8.8::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:8.8::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:9.0::baseos", "reference_id": "cpe:/o:redhat:rhel_e4s:9.0::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:9.0::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:9.2::baseos", "reference_id": "cpe:/o:redhat:rhel_e4s:9.2::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:9.2::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.4::baseos", "reference_id": "cpe:/o:redhat:rhel_eus:9.4::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.4::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.6::baseos", "reference_id": "cpe:/o:redhat:rhel_eus:9.6::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.6::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus_long_life:8.4::baseos", "reference_id": "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus_long_life:8.4::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_tus:8.6::baseos", "reference_id": "cpe:/o:redhat:rhel_tus:8.6::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_tus:8.6::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_tus:8.8::baseos", "reference_id": "cpe:/o:redhat:rhel_tus:8.8::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_tus:8.8::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-61662", "reference_id": "CVE-2025-61662", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-61662" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html", "reference_id": "msg00155.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10097", "reference_id": "RHSA-2026:10097", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:10097" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:14773", "reference_id": "RHSA-2026:14773", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:14773" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15087", "reference_id": "RHSA-2026:15087", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:15087" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17596", "reference_id": "RHSA-2026:17596", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:17596" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4648", "reference_id": "RHSA-2026:4648", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4649", "reference_id": "RHSA-2026:4649", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4649" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4652", "reference_id": "RHSA-2026:4652", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4652" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4653", "reference_id": "RHSA-2026:4653", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4653" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4654", "reference_id": "RHSA-2026:4654", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4760", "reference_id": "RHSA-2026:4760", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4760" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4822", "reference_id": "RHSA-2026:4822", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4823", "reference_id": "RHSA-2026:4823", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4823" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4830", "reference_id": "RHSA-2026:4830", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4900", "reference_id": "RHSA-2026:4900", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4900" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4998", "reference_id": "RHSA-2026:4998", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:4998" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5074", "reference_id": "RHSA-2026:5074", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:5074" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5127", "reference_id": "RHSA-2026:5127", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:5127" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5233", "reference_id": "RHSA-2026:5233", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:5233" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6492", "reference_id": "RHSA-2026:6492", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:6492" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7239", "reference_id": "RHSA-2026:7239", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7239" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7243", "reference_id": "RHSA-2026:7243", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7243" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414683", "reference_id": "show_bug.cgi?id=2414683", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-18T18:44:47Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414683" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44539?format=api", "purl": "pkg:deb/debian/grub2@2.14-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-61662" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e8d4-fx3j-1ud8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/25327?format=api", "vulnerability_id": "VCID-mf3u-dqu5-1bfa", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4382.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4382.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-4382", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22513", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2232", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-4382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4382" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105108", "reference_id": "1105108", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105108" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-4382", "reference_id": "CVE-2025-4382", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-09T13:23:09Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-4382" }, { "reference_url": "https://gitweb.git.savannah.gnu.org/gitweb/?p=grub.git;a=blobdiff;f=grub-core/kern/rescue_reader.c;h=a71ada8fb7da2eae6ee7135fe234fb1755ca78b0;hp=4259857ba9eea45446bc40ea13c3de4ab1b88ffd;hb=c448f511e74cb7c776b314fcb7943f98d3f22b6d;hpb=4abac0ad5a7914dd3cdfff08aaac06588bf98d80", "reference_id": "rescue_reader.c;h=a71ada8fb7da2eae6ee7135fe234fb1755ca78b0;hp=4259857ba9eea45446bc40ea13c3de4ab1b88ffd;hb=c448f511e74cb7c776b314fcb7943f98d3f22b6d;hpb=4abac0ad5a7914dd3cdfff08aaac06588bf98d80", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-09T13:23:09Z/" } ], "url": "https://gitweb.git.savannah.gnu.org/gitweb/?p=grub.git;a=blobdiff;f=grub-core/kern/rescue_reader.c;h=a71ada8fb7da2eae6ee7135fe234fb1755ca78b0;hp=4259857ba9eea45446bc40ea13c3de4ab1b88ffd;hb=c448f511e74cb7c776b314fcb7943f98d3f22b6d;hpb=4abac0ad5a7914dd3cdfff08aaac06588bf98d80" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364416", "reference_id": "show_bug.cgi?id=2364416", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-09T13:23:09Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364416" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44538?format=api", "purl": "pkg:deb/debian/grub2@2.14~git20250718.0e36779-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14~git20250718.0e36779-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-4382" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mf3u-dqu5-1bfa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/25763?format=api", "vulnerability_id": "VCID-qaaw-enbz-guaa", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-61664.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-61664.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61664", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.043", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04313", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61664" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968", "reference_id": "1120968", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-61664", "reference_id": "CVE-2025-61664", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:28:39Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-61664" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html", "reference_id": "msg00155.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:28:39Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414685", "reference_id": "show_bug.cgi?id=2414685", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:28:39Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414685" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44539?format=api", "purl": "pkg:deb/debian/grub2@2.14-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-61664" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qaaw-enbz-guaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/25606?format=api", "vulnerability_id": "VCID-uyeg-bkhr-tkc3", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-54771.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-54771.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-54771", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05563", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05536", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-54771" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54771", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54771" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968", "reference_id": "1120968", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-54771", "reference_id": "CVE-2025-54771", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:17:17Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-54771" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html", "reference_id": "msg00155.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:17:17Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413823", "reference_id": "show_bug.cgi?id=2413823", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:17:17Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413823" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44539?format=api", "purl": "pkg:deb/debian/grub2@2.14-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-54771" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uyeg-bkhr-tkc3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/25762?format=api", "vulnerability_id": "VCID-vyvj-41b9-67fg", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-61663.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-61663.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61663", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06692", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06671", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-61663" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968", "reference_id": "1120968", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120968" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-61663", "reference_id": "CVE-2025-61663", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:27:28Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-61663" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414684", "reference_id": "show_bug.cgi?id=2414684", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-19T14:27:28Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414684" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44539?format=api", "purl": "pkg:deb/debian/grub2@2.14-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-61663" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vyvj-41b9-67fg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/21947?format=api", "vulnerability_id": "VCID-xbey-x9g3-duhq", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56737.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56737.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-56737", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42341", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42504", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-56737" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56737", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56737" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2334772", "reference_id": "2334772", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2334772" }, { "reference_url": "https://savannah.gnu.org/bugs/?66599", "reference_id": "?66599", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-31T18:16:13Z/" } ], "url": "https://savannah.gnu.org/bugs/?66599" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-56737" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xbey-x9g3-duhq" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22406?format=api", "vulnerability_id": "VCID-1cwr-bsrw-yfhs", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0678.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0678.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0678", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12961", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12865", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0678" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0678", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0678" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-0678", "reference_id": "CVE-2025-0678", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:15:54Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-0678" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346118", "reference_id": "show_bug.cgi?id=2346118", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:15:54Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346118" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-0678" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1cwr-bsrw-yfhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9639?format=api", "vulnerability_id": "VCID-2521-xzt1-cbhc", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3418.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3418.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3418", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20865", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.21041", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3418" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1933757", "reference_id": "1933757", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1933757" }, { "reference_url": "https://security.archlinux.org/AVG-1630", "reference_id": "AVG-1630", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1630" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44524?format=api", "purl": "pkg:deb/debian/grub2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-3418" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2521-xzt1-cbhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20544?format=api", "vulnerability_id": "VCID-2xx5-66mt-jqf4", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45774.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45774.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45774", "reference_id": "", "reference_type": "", "scores": [ { "value": "4e-05", "scoring_system": "epss", "scoring_elements": "0.00161", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45774" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45774", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45774" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45774", "reference_id": "CVE-2024-45774", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-18T18:54:05Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45774" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-18T18:54:05Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:6990", "reference_id": "RHSA-2025:6990", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-18T18:54:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:6990" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337461", "reference_id": "show_bug.cgi?id=2337461", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-18T18:54:05Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337461" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45774" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2xx5-66mt-jqf4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7785?format=api", "vulnerability_id": "VCID-3dmp-vrx5-t7gz", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14372.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14372.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14372", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01451", "scoring_system": "epss", "scoring_elements": "0.81215", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01451", "scoring_system": "epss", "scoring_elements": "0.81275", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150", "reference_id": "1873150", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "reference_url": "https://security.archlinux.org/ASA-202106-43", "reference_id": "ASA-202106-43", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-43" }, { "reference_url": "https://security.archlinux.org/AVG-1629", "reference_id": "AVG-1629", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1629" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0696", "reference_id": "RHSA-2021:0696", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0697", "reference_id": "RHSA-2021:0697", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0698", "reference_id": "RHSA-2021:0698", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0699", "reference_id": "RHSA-2021:0699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0700", "reference_id": "RHSA-2021:0700", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0701", "reference_id": "RHSA-2021:0701", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0702", "reference_id": "RHSA-2021:0702", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0703", "reference_id": "RHSA-2021:0703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0704", "reference_id": "RHSA-2021:0704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1734", "reference_id": "RHSA-2021:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2566", "reference_id": "RHSA-2021:2566", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2790", "reference_id": "RHSA-2021:2790", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3675", "reference_id": "RHSA-2021:3675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3675" }, { "reference_url": "https://usn.ubuntu.com/4992-1/", "reference_id": "USN-4992-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4992-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44528?format=api", "purl": "pkg:deb/debian/grub2@2.04-16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14372" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3dmp-vrx5-t7gz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/534?format=api", "vulnerability_id": "VCID-3t22-fqkj-27ht", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8370.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8370.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8370", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04702", "scoring_system": "epss", "scoring_elements": "0.89632", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.04702", "scoring_system": "epss", "scoring_elements": "0.89598", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8370" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8370", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8370" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1034422", "reference_id": "1034422", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://www.securitytracker.com/id/1034422" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1286966", "reference_id": "1286966", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1286966" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173703.html", "reference_id": "173703.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173703.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/174049.html", "reference_id": "174049.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/174049.html" }, { "reference_url": "https://security.gentoo.org/glsa/201512-03", "reference_id": "201512-03", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "https://security.gentoo.org/glsa/201512-03" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2024/01/15/3", "reference_id": "3", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2024/01/15/3" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2015/12/15/6", "reference_id": "6", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2015/12/15/6" }, { "reference_url": "http://seclists.org/fulldisclosure/2015/Dec/69", "reference_id": "69", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://seclists.org/fulldisclosure/2015/Dec/69" }, { "reference_url": "http://www.securityfocus.com/bid/79358", "reference_id": "79358", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://www.securityfocus.com/bid/79358" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807614", "reference_id": "807614", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807614" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html", "reference_id": "cpujan2016-2367955.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html" }, { "reference_url": "http://hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html", "reference_id": "CVE-2015-8370-Grub2-authentication-bypass.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html" }, { "reference_url": "http://www.debian.org/security/2015/dsa-3421", "reference_id": "dsa-3421", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://www.debian.org/security/2015/dsa-3421" }, { "reference_url": "http://packetstormsecurity.com/files/134831/Grub2-Authentication-Bypass.html", "reference_id": "Grub2-Authentication-Bypass.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://packetstormsecurity.com/files/134831/Grub2-Authentication-Bypass.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", "reference_id": "linuxbulletinoct2015-2719645.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00003.html", "reference_id": "msg00003.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00003.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00037.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00039.html", "reference_id": "msg00039.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00039.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00040.html", "reference_id": "msg00040.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00040.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00041.html", "reference_id": "msg00041.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00041.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00043.html", "reference_id": "msg00043.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00043.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00044.html", "reference_id": "msg00044.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00044.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:2623", "reference_id": "RHSA-2015:2623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:2623" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2015-2623.html", "reference_id": "RHSA-2015-2623.html", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://rhn.redhat.com/errata/RHSA-2015-2623.html" }, { "reference_url": "http://www.securityfocus.com/archive/1/537115/100/0/threaded", "reference_id": "threaded", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://www.securityfocus.com/archive/1/537115/100/0/threaded" }, { "reference_url": "https://usn.ubuntu.com/2836-1/", "reference_id": "USN-2836-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2836-1/" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2836-1", "reference_id": "USN-2836-1", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-06T21:01:48Z/" } ], "url": "http://www.ubuntu.com/usn/USN-2836-1" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44525?format=api", "purl": "pkg:deb/debian/grub2@2.02~beta2-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.02~beta2-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2015-8370" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3t22-fqkj-27ht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16036?format=api", "vulnerability_id": "VCID-3utk-v42k-pffa", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4693.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4693.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-4693", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01233", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01229", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-4693" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4692" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4693", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4693" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238343", "reference_id": "2238343", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2456", "reference_id": "RHSA-2024:2456", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3184", "reference_id": "RHSA-2024:3184", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3184" }, { "reference_url": "https://usn.ubuntu.com/6410-1/", "reference_id": "USN-6410-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6410-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44534?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44535?format=api", "purl": "pkg:deb/debian/grub2@2.12~rc1-11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12~rc1-11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-4693" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3utk-v42k-pffa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8406?format=api", "vulnerability_id": "VCID-3vk8-c5rd-9fd7", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27779.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27779.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27779", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08717", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08757", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698", "reference_id": "1900698", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "reference_url": "https://security.archlinux.org/ASA-202106-43", "reference_id": "ASA-202106-43", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-43" }, { "reference_url": "https://security.archlinux.org/AVG-1629", "reference_id": "AVG-1629", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1629" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0696", "reference_id": "RHSA-2021:0696", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0697", "reference_id": "RHSA-2021:0697", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0698", "reference_id": "RHSA-2021:0698", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0699", "reference_id": "RHSA-2021:0699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0700", "reference_id": "RHSA-2021:0700", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0701", "reference_id": "RHSA-2021:0701", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0702", "reference_id": "RHSA-2021:0702", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0703", "reference_id": "RHSA-2021:0703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0704", "reference_id": "RHSA-2021:0704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1734", "reference_id": "RHSA-2021:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2566", "reference_id": "RHSA-2021:2566", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2790", "reference_id": "RHSA-2021:2790", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3675", "reference_id": "RHSA-2021:3675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3675" }, { "reference_url": "https://usn.ubuntu.com/4992-1/", "reference_id": "USN-4992-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4992-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44528?format=api", "purl": "pkg:deb/debian/grub2@2.04-16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-27779" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3vk8-c5rd-9fd7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7753?format=api", "vulnerability_id": "VCID-46gu-12gm-s7g5", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14309.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14309.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14309", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14226", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14346", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022", "reference_id": "1852022", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3216", "reference_id": "RHSA-2020:3216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3217", "reference_id": "RHSA-2020:3217", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3217" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3223", "reference_id": "RHSA-2020:3223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3227", "reference_id": "RHSA-2020:3227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3271", "reference_id": "RHSA-2020:3271", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3273", "reference_id": "RHSA-2020:3273", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3273" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3274", "reference_id": "RHSA-2020:3274", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3274" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3275", "reference_id": "RHSA-2020:3275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3276", "reference_id": "RHSA-2020:3276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3276" }, { "reference_url": "https://usn.ubuntu.com/4432-1/", "reference_id": "USN-4432-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4432-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44527?format=api", "purl": "pkg:deb/debian/grub2@2.04-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14309" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-46gu-12gm-s7g5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7902?format=api", "vulnerability_id": "VCID-51ye-nkwv-vbdz", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15705.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15705.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15705", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06926", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06955", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15705" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978", "reference_id": "1860978", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3216", "reference_id": "RHSA-2020:3216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3217", "reference_id": "RHSA-2020:3217", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3217" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3223", "reference_id": "RHSA-2020:3223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3227", "reference_id": "RHSA-2020:3227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3271", "reference_id": "RHSA-2020:3271", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3273", "reference_id": "RHSA-2020:3273", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3273" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3274", "reference_id": "RHSA-2020:3274", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3274" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3275", "reference_id": "RHSA-2020:3275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3276", "reference_id": "RHSA-2020:3276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3276" }, { "reference_url": "https://usn.ubuntu.com/4432-1/", "reference_id": "USN-4432-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4432-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44524?format=api", "purl": "pkg:deb/debian/grub2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-15705" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-51ye-nkwv-vbdz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22405?format=api", "vulnerability_id": "VCID-5u6c-cpn2-6ueh", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0677.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0677.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0677", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.13059", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12963", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0677" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0677", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0677" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-0677", "reference_id": "CVE-2025-0677", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T18:39:38Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-0677" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T18:39:38Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16154", "reference_id": "RHSA-2025:16154", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T18:39:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:16154" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:6990", "reference_id": "RHSA-2025:6990", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T18:39:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:6990" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346116", "reference_id": "show_bug.cgi?id=2346116", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T18:39:38Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346116" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-0677" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5u6c-cpn2-6ueh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8216?format=api", "vulnerability_id": "VCID-61vm-6ue3-p3ds", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25647.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25647.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25647", "reference_id": "", "reference_type": "", "scores": [ { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00964", "published_at": "2026-06-11T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00963", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936", "reference_id": "1886936", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "reference_url": "https://security.archlinux.org/ASA-202106-43", "reference_id": "ASA-202106-43", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-43" }, { "reference_url": "https://security.archlinux.org/AVG-1629", "reference_id": "AVG-1629", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1629" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0696", "reference_id": "RHSA-2021:0696", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0697", "reference_id": "RHSA-2021:0697", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0698", "reference_id": "RHSA-2021:0698", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0699", "reference_id": "RHSA-2021:0699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0700", "reference_id": "RHSA-2021:0700", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0701", "reference_id": "RHSA-2021:0701", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0702", "reference_id": "RHSA-2021:0702", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0703", "reference_id": "RHSA-2021:0703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0704", "reference_id": "RHSA-2021:0704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1734", "reference_id": "RHSA-2021:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2566", "reference_id": "RHSA-2021:2566", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2790", "reference_id": "RHSA-2021:2790", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3675", "reference_id": "RHSA-2021:3675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44528?format=api", "purl": "pkg:deb/debian/grub2@2.04-16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-25647" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-61vm-6ue3-p3ds" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22409?format=api", "vulnerability_id": "VCID-65tq-9p6e-afe1", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0686.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0686.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0686", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18592", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18427", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0686" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0686", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0686" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-0686", "reference_id": "CVE-2025-0686", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:11:43Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-0686" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346121", "reference_id": "show_bug.cgi?id=2346121", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:11:43Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346121" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-0686" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-65tq-9p6e-afe1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22462?format=api", "vulnerability_id": "VCID-77hu-u8cr-4qg8", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1118.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1118.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-1118", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04362", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04358", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-1118" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1118", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1118" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-1118", "reference_id": "CVE-2025-1118", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-03T17:23:06Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-1118" }, { "reference_url": "https://git.savannah.gnu.org/cgit/grub.git/commit/?id=34824806ac6302f91e8cabaa41308eaced25725f", "reference_id": "?id=34824806ac6302f91e8cabaa41308eaced25725f", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-03T17:23:06Z/" } ], "url": "https://git.savannah.gnu.org/cgit/grub.git/commit/?id=34824806ac6302f91e8cabaa41308eaced25725f" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-03T17:23:06Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16154", "reference_id": "RHSA-2025:16154", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-03T17:23:06Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:16154" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346137", "reference_id": "show_bug.cgi?id=2346137", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-03T17:23:06Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346137" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-1118" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-77hu-u8cr-4qg8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22410?format=api", "vulnerability_id": "VCID-7d6c-2jmz-fkah", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0689.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0689.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0689", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30358", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30554", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0689" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0689", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0689" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-0689", "reference_id": "CVE-2025-0689", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-03T15:08:10Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-0689" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-03T15:08:10Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346122", "reference_id": "show_bug.cgi?id=2346122", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-03T15:08:10Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346122" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-0689" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7d6c-2jmz-fkah" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20548?format=api", "vulnerability_id": "VCID-7esr-ftvb-t7dh", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45778.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45778.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45778", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03898", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03877", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45778" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45778", "reference_id": "CVE-2024-45778", "reference_type": "", "scores": [ { "value": "4.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-04T16:17:31Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45778" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "4.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-04T16:17:31Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345640", "reference_id": "show_bug.cgi?id=2345640", "reference_type": "", "scores": [ { "value": "4.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-04T16:17:31Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345640" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45778" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7esr-ftvb-t7dh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20553?format=api", "vulnerability_id": "VCID-89v4-r1v3-jygv", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45783.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45783.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45783", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.08268", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.08231", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45783" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45783", "reference_id": "CVE-2024-45783", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-19T14:42:27Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45783" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:6990", "reference_id": "RHSA-2025:6990", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-19T14:42:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:6990" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345863", "reference_id": "show_bug.cgi?id=2345863", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-19T14:42:27Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345863" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45783" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-89v4-r1v3-jygv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7495?format=api", "vulnerability_id": "VCID-94yw-ev59-63dw", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10713.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10713.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10713", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59222", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59334", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243", "reference_id": "1825243", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3216", "reference_id": "RHSA-2020:3216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3217", "reference_id": "RHSA-2020:3217", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3217" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3223", "reference_id": "RHSA-2020:3223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3227", "reference_id": "RHSA-2020:3227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3271", "reference_id": "RHSA-2020:3271", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3273", "reference_id": "RHSA-2020:3273", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3273" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3274", "reference_id": "RHSA-2020:3274", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3274" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3275", "reference_id": "RHSA-2020:3275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3276", "reference_id": "RHSA-2020:3276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3276" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4115", "reference_id": "RHSA-2020:4115", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4115" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4172", "reference_id": "RHSA-2020:4172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4172" }, { "reference_url": "https://usn.ubuntu.com/4432-1/", "reference_id": "USN-4432-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4432-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44527?format=api", "purl": "pkg:deb/debian/grub2@2.04-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-10713" ], "risk_score": 3.7, "exploitability": "0.5", "weighted_severity": "7.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-94yw-ev59-63dw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8949?format=api", "vulnerability_id": "VCID-9e22-c3wt-jbak", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20233.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20233.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20233", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00286", "scoring_system": "epss", "scoring_elements": "0.52455", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00286", "scoring_system": "epss", "scoring_elements": "0.52583", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20233" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263", "reference_id": "1926263", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "reference_url": "https://security.archlinux.org/ASA-202106-43", "reference_id": "ASA-202106-43", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-43" }, { "reference_url": "https://security.archlinux.org/AVG-1629", "reference_id": "AVG-1629", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1629" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0696", "reference_id": "RHSA-2021:0696", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0697", "reference_id": "RHSA-2021:0697", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0698", "reference_id": "RHSA-2021:0698", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0699", "reference_id": "RHSA-2021:0699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0700", "reference_id": "RHSA-2021:0700", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0701", "reference_id": "RHSA-2021:0701", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0702", "reference_id": "RHSA-2021:0702", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0703", "reference_id": "RHSA-2021:0703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0704", "reference_id": "RHSA-2021:0704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1734", "reference_id": "RHSA-2021:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2566", "reference_id": "RHSA-2021:2566", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2790", "reference_id": "RHSA-2021:2790", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3675", "reference_id": "RHSA-2021:3675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3675" }, { "reference_url": "https://usn.ubuntu.com/4992-1/", "reference_id": "USN-4992-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4992-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44528?format=api", "purl": "pkg:deb/debian/grub2@2.04-16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-20233" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9e22-c3wt-jbak" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11821?format=api", "vulnerability_id": "VCID-9vpk-6dum-gfhr", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28733.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28733.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28733", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.29934", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30131", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28733" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2083339", "reference_id": "2083339", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2083339" }, { "reference_url": "https://www.openwall.com/lists/oss-security/2022/06/07/5", "reference_id": "5", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:49:29Z/" } ], "url": "https://www.openwall.com/lists/oss-security/2022/06/07/5" }, { "reference_url": "https://security.archlinux.org/AVG-2762", "reference_id": "AVG-2762", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2762" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28733", "reference_id": "cvename.cgi?name=CVE-2022-28733", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:49:29Z/" } ], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28733" }, { "reference_url": "https://security.gentoo.org/glsa/202209-12", "reference_id": "GLSA-202209-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202209-12" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230825-0002/", "reference_id": "ntap-20230825-0002", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:49:29Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230825-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5095", "reference_id": "RHSA-2022:5095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5096", "reference_id": "RHSA-2022:5096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5098", "reference_id": "RHSA-2022:5098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5099", "reference_id": "RHSA-2022:5099", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5099" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5100", "reference_id": "RHSA-2022:5100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5100" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5678", "reference_id": "RHSA-2022:5678", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5678" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8900", "reference_id": "RHSA-2022:8900", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8900" }, { "reference_url": "https://usn.ubuntu.com/6355-1/", "reference_id": "USN-6355-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6355-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44530?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44529?format=api", "purl": "pkg:deb/debian/grub2@2.06-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-28733" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9vpk-6dum-gfhr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22469?format=api", "vulnerability_id": "VCID-aj84-4gqd-pqa3", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1125.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1125.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-1125", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.26772", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00096", "scoring_system": "epss", "scoring_elements": "0.2657", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-1125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1125" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-1125", "reference_id": "CVE-2025-1125", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-03T15:11:35Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-1125" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-03T15:11:35Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346138", "reference_id": "show_bug.cgi?id=2346138", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-03T15:11:35Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346138" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-1125" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aj84-4gqd-pqa3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11823?format=api", "vulnerability_id": "VCID-bbks-4djj-8kf8", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28735.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28735.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28735", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05565", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05591", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28735" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1001057", "reference_id": "1001057", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1001057" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090857", "reference_id": "2090857", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090857" }, { "reference_url": "https://www.openwall.com/lists/oss-security/2022/06/07/5", "reference_id": "5", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:20:44Z/" } ], "url": "https://www.openwall.com/lists/oss-security/2022/06/07/5" }, { "reference_url": "https://security.archlinux.org/AVG-2762", "reference_id": "AVG-2762", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2762" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28735", "reference_id": "cvename.cgi?name=CVE-2022-28735", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:20:44Z/" } ], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28735" }, { "reference_url": "https://security.gentoo.org/glsa/202209-12", "reference_id": "GLSA-202209-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202209-12" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230825-0002/", "reference_id": "ntap-20230825-0002", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T19:20:44Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230825-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5095", "reference_id": "RHSA-2022:5095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5096", "reference_id": "RHSA-2022:5096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5098", "reference_id": "RHSA-2022:5098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5099", "reference_id": "RHSA-2022:5099", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5099" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5100", "reference_id": "RHSA-2022:5100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5100" }, { "reference_url": "https://usn.ubuntu.com/6355-1/", "reference_id": "USN-6355-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6355-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44530?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44529?format=api", "purl": "pkg:deb/debian/grub2@2.06-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-28735" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bbks-4djj-8kf8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/10019?format=api", "vulnerability_id": "VCID-c9rz-qwga-sfgd", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3981.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3981.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3981", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.07236", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.07277", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3981" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3981", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3981" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1001414", "reference_id": "1001414", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1001414" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2024170", "reference_id": "2024170", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2024170" }, { "reference_url": "https://security.gentoo.org/glsa/202209-12", "reference_id": "GLSA-202209-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202209-12" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:2110", "reference_id": "RHSA-2022:2110", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:2110" }, { "reference_url": "https://usn.ubuntu.com/6355-1/", "reference_id": "USN-6355-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6355-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44531?format=api", "purl": "pkg:deb/debian/grub2@2.06-8?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-8%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-3981" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c9rz-qwga-sfgd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/185527?format=api", "vulnerability_id": "VCID-cbug-3fce-dkd4", "summary": "Multiple vulnerabilities have been found in GRUB, the worst might\n allow for circumvention of UEFI Secure Boot.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15707.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15707.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15707", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.096", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09644", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15707" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581", "reference_id": "1861581", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3216", "reference_id": "RHSA-2020:3216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3217", "reference_id": "RHSA-2020:3217", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3217" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3223", "reference_id": "RHSA-2020:3223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3227", "reference_id": "RHSA-2020:3227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3271", "reference_id": "RHSA-2020:3271", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3274", "reference_id": "RHSA-2020:3274", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3274" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3275", "reference_id": "RHSA-2020:3275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3276", "reference_id": "RHSA-2020:3276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3276" }, { "reference_url": "https://usn.ubuntu.com/4432-1/", "reference_id": "USN-4432-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4432-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44527?format=api", "purl": "pkg:deb/debian/grub2@2.04-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-15707" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cbug-3fce-dkd4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11822?format=api", "vulnerability_id": "VCID-cq6g-ratv-xfbu", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28734.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28734.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28734", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35448", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35627", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28734" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28734", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28734" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090463", "reference_id": "2090463", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090463" }, { "reference_url": "https://security.archlinux.org/AVG-2762", "reference_id": "AVG-2762", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2762" }, { "reference_url": "https://security.gentoo.org/glsa/202209-12", "reference_id": "GLSA-202209-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202209-12" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5095", "reference_id": "RHSA-2022:5095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5096", "reference_id": "RHSA-2022:5096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5098", "reference_id": "RHSA-2022:5098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5099", "reference_id": "RHSA-2022:5099", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5099" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5100", "reference_id": "RHSA-2022:5100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5100" }, { "reference_url": "https://usn.ubuntu.com/6355-1/", "reference_id": "USN-6355-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6355-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44530?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44529?format=api", "purl": "pkg:deb/debian/grub2@2.06-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-28734" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cq6g-ratv-xfbu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20967?format=api", "vulnerability_id": "VCID-cwj8-tf7r-huar", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-49504.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-49504.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-49504", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25675", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25875", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-49504" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325913", "reference_id": "2325913", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325913" }, { "reference_url": "https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-49504", "reference_id": "show_bug.cgi?id=CVE-2024-49504", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-13T18:31:10Z/" } ], "url": "https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-49504" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44524?format=api", "purl": "pkg:deb/debian/grub2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-49504" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cwj8-tf7r-huar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22401?format=api", "vulnerability_id": "VCID-ecf6-7z9x-pqhd", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0624.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.71625", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.7154", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el8", "reference_id": "cpe:/a:redhat:openshift:4.12::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el9", "reference_id": "cpe:/a:redhat:openshift:4.12::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el8", "reference_id": "cpe:/a:redhat:openshift:4.13::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9", "reference_id": "cpe:/a:redhat:openshift:4.13::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el8", "reference_id": "cpe:/a:redhat:openshift:4.14::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9", "reference_id": "cpe:/a:redhat:openshift:4.14::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el8", "reference_id": "cpe:/a:redhat:openshift:4.15::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9", "reference_id": "cpe:/a:redhat:openshift:4.15::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9", "reference_id": "cpe:/a:redhat:openshift:4.16::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9", "reference_id": "cpe:/a:redhat:openshift:4.17::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.18::el9", "reference_id": "cpe:/a:redhat:openshift:4.18::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.18::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:8::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.2::baseos", "reference_id": "cpe:/o:redhat:rhel_aus:8.2::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.2::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.4::baseos", "reference_id": "cpe:/o:redhat:rhel_aus:8.4::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.4::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.6::baseos", "reference_id": "cpe:/o:redhat:rhel_aus:8.6::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:8.6::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:8.4::baseos", "reference_id": "cpe:/o:redhat:rhel_e4s:8.4::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:8.4::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:8.6::baseos", "reference_id": "cpe:/o:redhat:rhel_e4s:8.6::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:8.6::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:9.0::baseos", "reference_id": "cpe:/o:redhat:rhel_e4s:9.0::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_e4s:9.0::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:8.8::baseos", "reference_id": "cpe:/o:redhat:rhel_eus:8.8::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:8.8::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.2::baseos", "reference_id": "cpe:/o:redhat:rhel_eus:9.2::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.2::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.4::baseos", "reference_id": "cpe:/o:redhat:rhel_eus:9.4::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.4::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_tus:8.4::baseos", "reference_id": "cpe:/o:redhat:rhel_tus:8.4::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_tus:8.4::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_tus:8.6::baseos", "reference_id": "cpe:/o:redhat:rhel_tus:8.6::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_tus:8.6::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-0624", "reference_id": "CVE-2025-0624", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-0624" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2521", "reference_id": "RHSA-2025:2521", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2521" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2653", "reference_id": "RHSA-2025:2653", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2653" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2655", "reference_id": "RHSA-2025:2655", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2675", "reference_id": "RHSA-2025:2675", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2675" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2784", "reference_id": "RHSA-2025:2784", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2784" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2799", "reference_id": "RHSA-2025:2799", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2799" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2867", "reference_id": "RHSA-2025:2867", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2867" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2869", "reference_id": "RHSA-2025:2869", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2869" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3297", "reference_id": "RHSA-2025:3297", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3297" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3301", "reference_id": "RHSA-2025:3301", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3301" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3367", "reference_id": "RHSA-2025:3367", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3367" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3396", "reference_id": "RHSA-2025:3396", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3396" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3573", "reference_id": "RHSA-2025:3573", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3573" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3577", "reference_id": "RHSA-2025:3577", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3577" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3780", "reference_id": "RHSA-2025:3780", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3780" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:4422", "reference_id": "RHSA-2025:4422", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:4422" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7702", "reference_id": "RHSA-2025:7702", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7702" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346112", "reference_id": "show_bug.cgi?id=2346112", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-19T03:55:15Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346112" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-0624" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ecf6-7z9x-pqhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9837?format=api", "vulnerability_id": "VCID-gcfn-ze6a-zkfy", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3695.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3695.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3695", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18948", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.19113", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3695", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3695" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1991685", "reference_id": "1991685", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1991685" }, { "reference_url": "https://security.archlinux.org/AVG-2762", "reference_id": "AVG-2762", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2762" }, { "reference_url": "https://security.gentoo.org/glsa/202209-12", "reference_id": "GLSA-202209-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202209-12" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5095", "reference_id": "RHSA-2022:5095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5096", "reference_id": "RHSA-2022:5096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5098", "reference_id": "RHSA-2022:5098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5099", "reference_id": "RHSA-2022:5099", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5099" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5100", "reference_id": "RHSA-2022:5100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5100" }, { "reference_url": "https://usn.ubuntu.com/6355-1/", "reference_id": "USN-6355-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6355-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44530?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44529?format=api", "purl": "pkg:deb/debian/grub2@2.06-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-3695" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gcfn-ze6a-zkfy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/201608?format=api", "vulnerability_id": "VCID-gfjg-76ey-yuhb", "summary": "GNU GRand Unified Bootloader (GRUB) 2 1.97 only compares the submitted portion of a password with the actual password, which makes it easier for physically proximate attackers to conduct brute force attacks and bypass authentication by submitting a password whose length is 1.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4128.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4128.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4128", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12204", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12298", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4128" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=543153", "reference_id": "543153", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=543153" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555195", "reference_id": "555195", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555195" }, { "reference_url": "https://usn.ubuntu.com/868-1/", "reference_id": "USN-868-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/868-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44519?format=api", "purl": "pkg:deb/debian/grub2@1.97%2B20091115-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@1.97%252B20091115-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4128" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gfjg-76ey-yuhb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7755?format=api", "vulnerability_id": "VCID-hafh-p5h3-fyc1", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14311.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14311.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14311", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09668", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09717", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014", "reference_id": "1852014", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3216", "reference_id": "RHSA-2020:3216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3217", "reference_id": "RHSA-2020:3217", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3217" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3223", "reference_id": "RHSA-2020:3223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3227", "reference_id": "RHSA-2020:3227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3271", "reference_id": "RHSA-2020:3271", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3273", "reference_id": "RHSA-2020:3273", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3273" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3274", "reference_id": "RHSA-2020:3274", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3274" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3275", "reference_id": "RHSA-2020:3275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3276", "reference_id": "RHSA-2020:3276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3276" }, { "reference_url": "https://usn.ubuntu.com/4432-1/", "reference_id": "USN-4432-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4432-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44527?format=api", "purl": "pkg:deb/debian/grub2@2.04-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14311" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hafh-p5h3-fyc1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16035?format=api", "vulnerability_id": "VCID-hq4u-gyqu-dfbw", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4692.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4692.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-4692", "reference_id": "", "reference_type": "", "scores": [ { "value": "4e-05", "scoring_system": "epss", "scoring_elements": "0.00195", "published_at": "2026-06-12T12:55:00Z" }, { "value": "4e-05", "scoring_system": "epss", "scoring_elements": "0.00196", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-4692" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4692" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4693", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4693" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://seclists.org/oss-sec/2023/q4/37", "reference_id": "37", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/" } ], "url": "https://seclists.org/oss-sec/2023/q4/37" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:8::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-4692", "reference_id": "CVE-2023-4692", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-4692" }, { "reference_url": "https://dfir.ru/2023/10/03/cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager/", "reference_id": "cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/" } ], "url": "https://dfir.ru/2023/10/03/cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager/" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html", "reference_id": "msg00028.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2456", "reference_id": "RHSA-2024:2456", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3184", "reference_id": "RHSA-2024:3184", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3184" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236613", "reference_id": "show_bug.cgi?id=2236613", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-08-15T14:23:06Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236613" }, { "reference_url": "https://usn.ubuntu.com/6410-1/", "reference_id": "USN-6410-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6410-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44534?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44535?format=api", "purl": "pkg:deb/debian/grub2@2.12~rc1-11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12~rc1-11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-4692" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hq4u-gyqu-dfbw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20547?format=api", "vulnerability_id": "VCID-jn6b-fmfw-eugr", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45777.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45777.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45777", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06814", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.07052", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45777" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45777", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45777" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45777", "reference_id": "CVE-2024-45777", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T18:38:37Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20532", "reference_id": "RHSA-2025:20532", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T18:38:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20532" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346343", "reference_id": "show_bug.cgi?id=2346343", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T18:38:37Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346343" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45777" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jn6b-fmfw-eugr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20549?format=api", "vulnerability_id": "VCID-jvfu-u9uq-y7bn", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45779.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45779.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45779", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04243", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04231", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45779" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45779", "reference_id": "CVE-2024-45779", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-03T15:05:17Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45779" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-03T15:05:17Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345854", "reference_id": "show_bug.cgi?id=2345854", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-03T15:05:17Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345854" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45779" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jvfu-u9uq-y7bn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22400?format=api", "vulnerability_id": "VCID-jzjj-9du8-57db", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0622.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0622.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0622", "reference_id": "", "reference_type": "", "scores": [ { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00589", "published_at": "2026-06-12T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00591", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0622" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-0622", "reference_id": "CVE-2025-0622", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-18T19:41:48Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-0622" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-18T19:41:48Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16154", "reference_id": "RHSA-2025:16154", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-18T19:41:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:16154" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:6990", "reference_id": "RHSA-2025:6990", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-18T19:41:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:6990" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345865", "reference_id": "show_bug.cgi?id=2345865", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-18T19:41:48Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345865" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-0622" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jzjj-9du8-57db" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8209?format=api", "vulnerability_id": "VCID-m3sy-4er7-4qg3", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25632.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25632", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04653", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577", "reference_id": "1879577", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "reference_url": "https://security.archlinux.org/ASA-202106-43", "reference_id": "ASA-202106-43", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-43" }, { "reference_url": "https://security.archlinux.org/AVG-1629", "reference_id": "AVG-1629", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1629" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0696", "reference_id": "RHSA-2021:0696", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0697", "reference_id": "RHSA-2021:0697", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0698", "reference_id": "RHSA-2021:0698", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0699", "reference_id": "RHSA-2021:0699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0700", "reference_id": "RHSA-2021:0700", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0701", "reference_id": "RHSA-2021:0701", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0702", "reference_id": "RHSA-2021:0702", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0703", "reference_id": "RHSA-2021:0703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0704", "reference_id": "RHSA-2021:0704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1734", "reference_id": "RHSA-2021:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2566", "reference_id": "RHSA-2021:2566", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2790", "reference_id": "RHSA-2021:2790", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3675", "reference_id": "RHSA-2021:3675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3675" }, { "reference_url": "https://usn.ubuntu.com/4992-1/", "reference_id": "USN-4992-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4992-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44528?format=api", "purl": "pkg:deb/debian/grub2@2.04-16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-25632" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m3sy-4er7-4qg3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/202979?format=api", "vulnerability_id": "VCID-m4sz-ew4h-dkcq", "summary": "A certain Debian patch for GNU GRUB uses world-readable permissions for grub.cfg, which allows local users to obtain password hashes, as demonstrated by reading the password_pbkdf2 directive in the file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4577.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4577.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4577", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36102", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36281", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4577" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=632598", "reference_id": "632598", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=632598" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44523?format=api", "purl": "pkg:deb/debian/grub2@2.00-20?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.00-20%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-4577" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m4sz-ew4h-dkcq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18245?format=api", "vulnerability_id": "VCID-nfwr-p7hj-83fs", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-2312.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-2312.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-2312", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05994", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.0597", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-2312" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.launchpad.net/ubuntu/+source/grub2-unsigned/+bug/2054127", "reference_id": "2054127", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-21T15:39:12Z/" } ], "url": "https://bugs.launchpad.net/ubuntu/+source/grub2-unsigned/+bug/2054127" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273912", "reference_id": "2273912", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273912" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2312", "reference_id": "cvename.cgi?name=CVE-2024-2312", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-21T15:39:12Z/" } ], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2312" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20240426-0003/", "reference_id": "ntap-20240426-0003", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-21T15:39:12Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20240426-0003/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44524?format=api", "purl": "pkg:deb/debian/grub2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44536?format=api", "purl": "pkg:deb/debian/grub2@2.12-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-2312" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nfwr-p7hj-83fs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12277?format=api", "vulnerability_id": "VCID-nmdb-rm6q-hfd2", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3775.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3775.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3775", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25169", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25366", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3775" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3775", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3775" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202311-14", "reference_id": "202311-14", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-27T13:54:10Z/" } ], "url": "https://security.gentoo.org/glsa/202311-14" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2138880", "reference_id": "2138880", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2138880" }, { "reference_url": "https://access.redhat.com/security/cve/cve-2022-3775", "reference_id": "cve-2022-3775", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-27T13:54:10Z/" } ], "url": "https://access.redhat.com/security/cve/cve-2022-3775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8494", "reference_id": "RHSA-2022:8494", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8494" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8800", "reference_id": "RHSA-2022:8800", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8800" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8978", "reference_id": "RHSA-2022:8978", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8978" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0047", "reference_id": "RHSA-2023:0047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0048", "reference_id": "RHSA-2023:0048", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0048" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0049", "reference_id": "RHSA-2023:0049", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0049" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0752", "reference_id": "RHSA-2023:0752", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0752" }, { "reference_url": "https://usn.ubuntu.com/6355-1/", "reference_id": "USN-6355-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6355-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44533?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44532?format=api", "purl": "pkg:deb/debian/grub2@2.06-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-3775" ], "risk_score": 3.2, "exploitability": "0.5", "weighted_severity": "6.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nmdb-rm6q-hfd2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8942?format=api", "vulnerability_id": "VCID-nutk-tyq9-vues", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20225.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20225.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20225", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26892", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27095", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696", "reference_id": "1924696", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "reference_url": "https://security.archlinux.org/ASA-202106-43", "reference_id": "ASA-202106-43", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-43" }, { "reference_url": "https://security.archlinux.org/AVG-1629", "reference_id": "AVG-1629", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1629" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0696", "reference_id": "RHSA-2021:0696", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0697", "reference_id": "RHSA-2021:0697", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0698", "reference_id": "RHSA-2021:0698", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0699", "reference_id": "RHSA-2021:0699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0700", "reference_id": "RHSA-2021:0700", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0701", "reference_id": "RHSA-2021:0701", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0702", "reference_id": "RHSA-2021:0702", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0703", "reference_id": "RHSA-2021:0703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0704", "reference_id": "RHSA-2021:0704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1734", "reference_id": "RHSA-2021:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2566", "reference_id": "RHSA-2021:2566", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2790", "reference_id": "RHSA-2021:2790", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3675", "reference_id": "RHSA-2021:3675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3675" }, { "reference_url": "https://usn.ubuntu.com/4992-1/", "reference_id": "USN-4992-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4992-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44528?format=api", "purl": "pkg:deb/debian/grub2@2.04-16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-20225" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nutk-tyq9-vues" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9839?format=api", "vulnerability_id": "VCID-nxzk-sra4-byhe", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3697.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3697.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3697", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20967", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.21144", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3697", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3697" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1991687", "reference_id": "1991687", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1991687" }, { "reference_url": "https://security.archlinux.org/AVG-2762", "reference_id": "AVG-2762", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2762" }, { "reference_url": "https://security.gentoo.org/glsa/202209-12", "reference_id": "GLSA-202209-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202209-12" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5095", "reference_id": "RHSA-2022:5095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5096", "reference_id": "RHSA-2022:5096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5098", "reference_id": "RHSA-2022:5098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5099", "reference_id": "RHSA-2022:5099", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5099" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5100", "reference_id": "RHSA-2022:5100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5100" }, { "reference_url": "https://usn.ubuntu.com/6355-1/", "reference_id": "USN-6355-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6355-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44530?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44529?format=api", "purl": "pkg:deb/debian/grub2@2.06-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-3697" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nxzk-sra4-byhe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22411?format=api", "vulnerability_id": "VCID-pwm2-dz41-tfce", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0690.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0690.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0690", "reference_id": "", "reference_type": "", "scores": [ { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00496", "published_at": "2026-06-12T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00499", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0690" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-0690", "reference_id": "CVE-2025-0690", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T11:17:51Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-0690" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T11:17:51Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:6990", "reference_id": "RHSA-2025:6990", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T11:17:51Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:6990" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346123", "reference_id": "show_bug.cgi?id=2346123", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T11:17:51Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346123" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-0690" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pwm2-dz41-tfce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22408?format=api", "vulnerability_id": "VCID-py3n-qaj2-bqdz", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0685.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0685.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0685", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00089", "scoring_system": "epss", "scoring_elements": "0.2549", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00089", "scoring_system": "epss", "scoring_elements": "0.25293", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0685" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0685", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0685" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-0685", "reference_id": "CVE-2025-0685", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:13:24Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-0685" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346120", "reference_id": "show_bug.cgi?id=2346120", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:13:24Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346120" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-0685" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-py3n-qaj2-bqdz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8376?format=api", "vulnerability_id": "VCID-qkmn-e5z4-2fg2", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27749.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27749.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27749", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18653", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18816", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27749" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27749" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20233" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966", "reference_id": "1899966", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "reference_url": "https://security.archlinux.org/ASA-202106-43", "reference_id": "ASA-202106-43", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-43" }, { "reference_url": "https://security.archlinux.org/AVG-1629", "reference_id": "AVG-1629", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1629" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0696", "reference_id": "RHSA-2021:0696", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0697", "reference_id": "RHSA-2021:0697", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0698", "reference_id": "RHSA-2021:0698", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0699", "reference_id": "RHSA-2021:0699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0700", "reference_id": "RHSA-2021:0700", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0701", "reference_id": "RHSA-2021:0701", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0702", "reference_id": "RHSA-2021:0702", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0703", "reference_id": "RHSA-2021:0703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0704", "reference_id": "RHSA-2021:0704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1734", "reference_id": "RHSA-2021:1734", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2566", "reference_id": "RHSA-2021:2566", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2790", "reference_id": "RHSA-2021:2790", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3675", "reference_id": "RHSA-2021:3675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3675" }, { "reference_url": "https://usn.ubuntu.com/4992-1/", "reference_id": "USN-4992-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4992-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44528?format=api", "purl": "pkg:deb/debian/grub2@2.04-16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-27749" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qkmn-e5z4-2fg2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/214942?format=api", "vulnerability_id": "VCID-qm8f-fvvt-p7a9", "summary": "A Insecure Temporary File vulnerability in grub-once of grub2 in SUSE Linux Enterprise Server 15 SP4, openSUSE Factory allows local attackers to truncate arbitrary files. This issue affects: SUSE Linux Enterprise Server 15 SP4 grub2 versions prior to 2.06-150400.7.1. SUSE openSUSE Factory grub2 versions prior to 2.06-18.1.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-46705", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.1362", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13738", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-46705" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44524?format=api", "purl": "pkg:deb/debian/grub2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-46705" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qm8f-fvvt-p7a9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20545?format=api", "vulnerability_id": "VCID-rtyq-ag7v-zfe4", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45775.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45775.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45775", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10786", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10727", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45775" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45775", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45775" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45775", "reference_id": "CVE-2024-45775", "reference_type": "", "scores": [ { "value": "5.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-19T14:42:30Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:6990", "reference_id": "RHSA-2025:6990", "reference_type": "", "scores": [ { "value": "5.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-19T14:42:30Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:6990" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337481", "reference_id": "show_bug.cgi?id=2337481", "reference_type": "", "scores": [ { "value": "5.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-19T14:42:30Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337481" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45775" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rtyq-ag7v-zfe4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7903?format=api", "vulnerability_id": "VCID-s1dt-csey-qyf1", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15706.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15706.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15706", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13783", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13898", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118", "reference_id": "1861118", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3216", "reference_id": "RHSA-2020:3216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3217", "reference_id": "RHSA-2020:3217", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3217" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3223", "reference_id": "RHSA-2020:3223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3227", "reference_id": "RHSA-2020:3227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3271", "reference_id": "RHSA-2020:3271", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3273", "reference_id": "RHSA-2020:3273", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3273" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3274", "reference_id": "RHSA-2020:3274", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3274" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3275", "reference_id": "RHSA-2020:3275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3276", "reference_id": "RHSA-2020:3276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3276" }, { "reference_url": "https://usn.ubuntu.com/4432-1/", "reference_id": "USN-4432-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4432-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44527?format=api", "purl": "pkg:deb/debian/grub2@2.04-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-15706" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s1dt-csey-qyf1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4242?format=api", "vulnerability_id": "VCID-s437-sun9-b7fm", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9763.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9763.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9763", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01357", "scoring_system": "epss", "scoring_elements": "0.80543", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01357", "scoring_system": "epss", "scoring_elements": "0.80604", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9763" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9763", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9763" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:C" }, { "value": "4.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1463361", "reference_id": "1463361", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1463361" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869423", "reference_id": "869423", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869423" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44526?format=api", "purl": "pkg:deb/debian/grub2@2.02~beta2-8?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.02~beta2-8%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-9763" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s437-sun9-b7fm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/214874?format=api", "vulnerability_id": "VCID-ufwf-r7pw-wkhp", "summary": "The grub2 package before 2.02-0.29 in Red Hat Enterprise Linux (RHEL) 7, when used on UEFI systems, allows local users to bypass intended Secure Boot restrictions and execute non-verified code via a crafted (1) multiboot or (2) multiboot2 module in the configuration file or physically proximate attackers to bypass intended Secure Boot restrictions and execute non-verified code via the (3) boot menu.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5281.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5281.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5281", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.19048", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.19217", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5281" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1264103", "reference_id": "1264103", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1264103" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:2401", "reference_id": "RHSA-2015:2401", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:2401" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44524?format=api", "purl": "pkg:deb/debian/grub2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2015-5281" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ufwf-r7pw-wkhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20546?format=api", "vulnerability_id": "VCID-uz42-m8vm-akeg", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45776.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45776.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45776", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06814", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06796", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45776" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45776", "reference_id": "CVE-2024-45776", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T14:43:26Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45776" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16154", "reference_id": "RHSA-2025:16154", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T14:43:26Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:16154" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:6990", "reference_id": "RHSA-2025:6990", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T14:43:26Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:6990" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2339182", "reference_id": "show_bug.cgi?id=2339182", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T14:43:26Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2339182" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45776" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uz42-m8vm-akeg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9838?format=api", "vulnerability_id": "VCID-v94m-dzsw-4fch", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3696.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3696.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3696", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29567", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29764", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3696" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1991686", "reference_id": "1991686", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1991686" }, { "reference_url": "https://security.archlinux.org/AVG-2762", "reference_id": "AVG-2762", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2762" }, { "reference_url": "https://security.gentoo.org/glsa/202209-12", "reference_id": "GLSA-202209-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202209-12" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5095", "reference_id": "RHSA-2022:5095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5096", "reference_id": "RHSA-2022:5096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5098", "reference_id": "RHSA-2022:5098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5099", "reference_id": "RHSA-2022:5099", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5099" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5100", "reference_id": "RHSA-2022:5100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5100" }, { "reference_url": "https://usn.ubuntu.com/6355-1/", "reference_id": "USN-6355-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6355-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44530?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44529?format=api", "purl": "pkg:deb/debian/grub2@2.06-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-3696" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v94m-dzsw-4fch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7754?format=api", "vulnerability_id": "VCID-w3wd-4nx3-cfa7", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14310.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14310.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14310", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18948", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.19113", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030", "reference_id": "1852030", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3216", "reference_id": "RHSA-2020:3216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3217", "reference_id": "RHSA-2020:3217", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3217" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3223", "reference_id": "RHSA-2020:3223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3227", "reference_id": "RHSA-2020:3227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3271", "reference_id": "RHSA-2020:3271", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3273", "reference_id": "RHSA-2020:3273", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3273" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3274", "reference_id": "RHSA-2020:3274", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3274" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3275", "reference_id": "RHSA-2020:3275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3276", "reference_id": "RHSA-2020:3276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3276" }, { "reference_url": "https://usn.ubuntu.com/4432-1/", "reference_id": "USN-4432-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4432-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44527?format=api", "purl": "pkg:deb/debian/grub2@2.04-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14310" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w3wd-4nx3-cfa7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15753?format=api", "vulnerability_id": "VCID-wdbd-4483-suhc", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4001.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4001.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-4001", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09668", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09622", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-4001" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.0::baseos", "reference_id": "cpe:/o:redhat:rhel_eus:9.0::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.0::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.2::baseos", "reference_id": "cpe:/o:redhat:rhel_eus:9.2::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_eus:9.2::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-4001", "reference_id": "CVE-2023-4001", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-22T19:43:22Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-4001" }, { "reference_url": "https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub-boot-manager/", "reference_id": "cve-2023-4001-a-vulnerability-in-the-downstream-grub-boot-manager", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-22T19:43:22Z/" } ], "url": "https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub-boot-manager/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0437", "reference_id": "RHSA-2024:0437", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-22T19:43:22Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0437" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0456", "reference_id": "RHSA-2024:0456", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-22T19:43:22Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0468", "reference_id": "RHSA-2024:0468", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-22T19:43:22Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0468" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2224951", "reference_id": "show_bug.cgi?id=2224951", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-22T19:43:22Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2224951" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44524?format=api", "purl": "pkg:deb/debian/grub2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-4001" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wdbd-4483-suhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20551?format=api", "vulnerability_id": "VCID-wdgy-cyyp-fbgj", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45781.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45781.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45781", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06814", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06796", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45781" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45781", "reference_id": "CVE-2024-45781", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T14:43:23Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45781" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16154", "reference_id": "RHSA-2025:16154", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T14:43:23Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:16154" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:6990", "reference_id": "RHSA-2025:6990", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T14:43:23Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:6990" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345857", "reference_id": "show_bug.cgi?id=2345857", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T14:43:23Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345857" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45781" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wdgy-cyyp-fbgj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6385?format=api", "vulnerability_id": "VCID-wr34-jsmh-uuex", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14865.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14865.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14865", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11695", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.1178", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14865" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764925", "reference_id": "1764925", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764925" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0335", "reference_id": "RHSA-2020:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0335" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44524?format=api", "purl": "pkg:deb/debian/grub2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2019-14865" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wr34-jsmh-uuex" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11670?format=api", "vulnerability_id": "VCID-xqpt-jp7v-rygg", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2601.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30498", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30694", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3775", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3775" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202311-14", "reference_id": "202311-14", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-20T15:43:38Z/" } ], "url": "https://security.gentoo.org/glsa/202311-14" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112975", "reference_id": "2112975", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112975" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230203-0004/", "reference_id": "ntap-20230203-0004", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-20T15:43:38Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230203-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8494", "reference_id": "RHSA-2022:8494", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8494" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8800", "reference_id": "RHSA-2022:8800", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8800" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8978", "reference_id": "RHSA-2022:8978", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8978" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0047", "reference_id": "RHSA-2023:0047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0048", "reference_id": "RHSA-2023:0048", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0048" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0049", "reference_id": "RHSA-2023:0049", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0049" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0752", "reference_id": "RHSA-2023:0752", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0752" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2002", "reference_id": "RHSA-2024:2002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2002" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112975#c0", "reference_id": "show_bug.cgi?id=2112975#c0", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-20T15:43:38Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112975#c0" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44533?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44532?format=api", "purl": "pkg:deb/debian/grub2@2.06-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-2601" ], "risk_score": 3.9, "exploitability": "0.5", "weighted_severity": "7.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xqpt-jp7v-rygg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11824?format=api", "vulnerability_id": "VCID-y8ra-rffd-aqcy", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28736.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28736.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28736", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10514", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10571", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-28736" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092613", "reference_id": "2092613", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092613" }, { "reference_url": "https://www.openwall.com/lists/oss-security/2022/06/07/5", "reference_id": "5", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T18:53:03Z/" } ], "url": "https://www.openwall.com/lists/oss-security/2022/06/07/5" }, { "reference_url": "https://security.archlinux.org/AVG-2762", "reference_id": "AVG-2762", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2762" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28736", "reference_id": "cvename.cgi?name=CVE-2022-28736", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T18:53:03Z/" } ], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28736" }, { "reference_url": "https://security.gentoo.org/glsa/202209-12", "reference_id": "GLSA-202209-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202209-12" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230825-0002/", "reference_id": "ntap-20230825-0002", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-24T18:53:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230825-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5095", "reference_id": "RHSA-2022:5095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5096", "reference_id": "RHSA-2022:5096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5098", "reference_id": "RHSA-2022:5098", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5098" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5099", "reference_id": "RHSA-2022:5099", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5099" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5100", "reference_id": "RHSA-2022:5100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5100" }, { "reference_url": "https://usn.ubuntu.com/6355-1/", "reference_id": "USN-6355-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6355-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44530?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44529?format=api", "purl": "pkg:deb/debian/grub2@2.06-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-28736" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y8ra-rffd-aqcy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20552?format=api", "vulnerability_id": "VCID-yj3w-qnzb-b3ef", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45782.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45782.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45782", "reference_id": "", "reference_type": "", "scores": [ { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00929", "published_at": "2026-06-12T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00933", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45782" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45782", "reference_id": "CVE-2024-45782", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:16:37Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45782" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345858", "reference_id": "show_bug.cgi?id=2345858", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:16:37Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345858" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45782" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yj3w-qnzb-b3ef" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18033?format=api", "vulnerability_id": "VCID-yntp-3ys1-wyhc", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1048.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1048.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1048", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01194", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01196", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1048" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://www.openwall.com/lists/oss-security/2024/02/06/3", "reference_id": "3", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T20:13:20Z/" } ], "url": "https://www.openwall.com/lists/oss-security/2024/02/06/3" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:8::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8::baseos" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos", "reference_id": "cpe:/o:redhat:enterprise_linux:9::baseos", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9::baseos" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-1048", "reference_id": "CVE-2024-1048", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T20:13:20Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-1048" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2456", "reference_id": "RHSA-2024:2456", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T20:13:20Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3184", "reference_id": "RHSA-2024:3184", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T20:13:20Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3184" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256827", "reference_id": "show_bug.cgi?id=2256827", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-26T20:13:20Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256827" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44524?format=api", "purl": "pkg:deb/debian/grub2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-1048" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yntp-3ys1-wyhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20550?format=api", "vulnerability_id": "VCID-ysq1-8hgc-2qfp", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45780.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45780.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45780", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06796", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06814", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-45780" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45780", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45780" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-45780", "reference_id": "CVE-2024-45780", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-03T15:07:37Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-45780" }, { "reference_url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html", "reference_id": "msg00024.html", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-03T15:07:37Z/" } ], "url": "https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345856", "reference_id": "show_bug.cgi?id=2345856", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-03T15:07:37Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345856" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-45780" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ysq1-8hgc-2qfp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7752?format=api", "vulnerability_id": "VCID-z8uj-cj8g-3ff7", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14308.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14308.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14308", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10421", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10473", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14308" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009", "reference_id": "1852009", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009" }, { "reference_url": "https://security.gentoo.org/glsa/202104-05", "reference_id": "GLSA-202104-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-05" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3216", "reference_id": "RHSA-2020:3216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3217", "reference_id": "RHSA-2020:3217", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3217" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3223", "reference_id": "RHSA-2020:3223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3227", "reference_id": "RHSA-2020:3227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3271", "reference_id": "RHSA-2020:3271", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3273", "reference_id": "RHSA-2020:3273", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3273" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3274", "reference_id": "RHSA-2020:3274", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3274" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3275", "reference_id": "RHSA-2020:3275", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3275" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3276", "reference_id": "RHSA-2020:3276", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3276" }, { "reference_url": "https://usn.ubuntu.com/4432-1/", "reference_id": "USN-4432-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4432-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44527?format=api", "purl": "pkg:deb/debian/grub2@2.04-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.04-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44520?format=api", "purl": "pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-1cwr-bsrw-yfhs" }, { "vulnerability": "VCID-2xx5-66mt-jqf4" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-5u6c-cpn2-6ueh" }, { "vulnerability": "VCID-65tq-9p6e-afe1" }, { "vulnerability": "VCID-77hu-u8cr-4qg8" }, { "vulnerability": "VCID-7d6c-2jmz-fkah" }, { "vulnerability": "VCID-7esr-ftvb-t7dh" }, { "vulnerability": "VCID-89v4-r1v3-jygv" }, { "vulnerability": "VCID-aj84-4gqd-pqa3" }, { "vulnerability": "VCID-c9rz-qwga-sfgd" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-ecf6-7z9x-pqhd" }, { "vulnerability": "VCID-jn6b-fmfw-eugr" }, { "vulnerability": "VCID-jvfu-u9uq-y7bn" }, { "vulnerability": "VCID-jzjj-9du8-57db" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-pwm2-dz41-tfce" }, { "vulnerability": "VCID-py3n-qaj2-bqdz" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-rtyq-ag7v-zfe4" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-uz42-m8vm-akeg" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-wdgy-cyyp-fbgj" }, { "vulnerability": "VCID-xbey-x9g3-duhq" }, { "vulnerability": "VCID-yj3w-qnzb-b3ef" }, { "vulnerability": "VCID-ysq1-8hgc-2qfp" }, { "vulnerability": "VCID-zc2j-85t8-subn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14308" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z8uj-cj8g-3ff7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22407?format=api", "vulnerability_id": "VCID-zc2j-85t8-subn", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0684.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0684.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0684", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12098", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12006", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0684" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0684", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0684" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319", "reference_id": "1098319", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098319" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4", "reference_id": "cpe:/a:redhat:openshift:4", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-0684", "reference_id": "CVE-2025-0684", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:14:33Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-0684" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346119", "reference_id": "show_bug.cgi?id=2346119", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-04T16:14:33Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2346119" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44518?format=api", "purl": "pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" }, { "vulnerability": "VCID-xbey-x9g3-duhq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44537?format=api", "purl": "pkg:deb/debian/grub2@2.12-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44522?format=api", "purl": "pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19fk-tpf7-3keh" }, { "vulnerability": "VCID-3c3v-t8fw-a3bp" }, { "vulnerability": "VCID-e8d4-fx3j-1ud8" }, { "vulnerability": "VCID-mf3u-dqu5-1bfa" }, { "vulnerability": "VCID-qaaw-enbz-guaa" }, { "vulnerability": "VCID-uyeg-bkhr-tkc3" }, { "vulnerability": "VCID-vyvj-41b9-67fg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44521?format=api", "purl": "pkg:deb/debian/grub2@2.14-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-0684" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zc2j-85t8-subn" } ], "risk_score": "3.5", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie" }