{"url":"http://public2.vulnerablecode.io/api/packages/481271?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6?arch=loongarch64&distroversion=v3.23&reponame=community","type":"apk","namespace":"alpine","name":"qt5-qtwebengine","version":"5.15.16-r6","qualifiers":{"arch":"loongarch64","distroversion":"v3.23","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"5.15.16-r7","latest_non_vulnerable_version":"5.15.17-r10","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/63837?format=json","vulnerability_id":"VCID-15mb-96ez-efet","summary":"Use after free in Peer Connection in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1059","reference_id":"","reference_type":"","scores":[{"value":"0.00553","scoring_system":"epss","scoring_elements":"0.68452","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00553","scoring_system":"epss","scoring_elements":"0.68456","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00553","scoring_system":"epss","scoring_elements":"0.68437","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00553","scoring_system":"epss","scoring_elements":"0.68453","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00553","scoring_system":"epss","scoring_elements":"0.6846","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1059"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1059","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1059"},{"reference_url":"https://crbug.com/1514777","reference_id":"1514777","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:34Z/"}],"url":"https://crbug.com/1514777"},{"reference_url":"https://security.gentoo.org/glsa/202402-23","reference_id":"GLSA-202402-23","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202402-23"},{"reference_url":"https://security.gentoo.org/glsa/202405-14","reference_id":"GLSA-202405-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-14"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/","reference_id":"NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:34Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/"},{"reference_url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html","reference_id":"stable-channel-update-for-desktop_30.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:34Z/"}],"url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/","reference_id":"XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:34Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/481271?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6?arch=loongarch64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6%3Farch=loongarch64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-1059"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-15mb-96ez-efet"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/63815?format=json","vulnerability_id":"VCID-6ffu-rt48-9kbg","summary":"Use after free in Web Audio in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0807","reference_id":"","reference_type":"","scores":[{"value":"0.002","scoring_system":"epss","scoring_elements":"0.42076","published_at":"2026-06-05T12:55:00Z"},{"value":"0.002","scoring_system":"epss","scoring_elements":"0.42032","published_at":"2026-06-09T12:55:00Z"},{"value":"0.002","scoring_system":"epss","scoring_elements":"0.42024","published_at":"2026-06-08T12:55:00Z"},{"value":"0.002","scoring_system":"epss","scoring_elements":"0.42059","published_at":"2026-06-07T12:55:00Z"},{"value":"0.002","scoring_system":"epss","scoring_elements":"0.42087","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0807"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0807","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0807"},{"reference_url":"https://crbug.com/1505080","reference_id":"1505080","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-06T05:00:18Z/"}],"url":"https://crbug.com/1505080"},{"reference_url":"https://security.gentoo.org/glsa/202402-23","reference_id":"GLSA-202402-23","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202402-23"},{"reference_url":"https://security.gentoo.org/glsa/202405-14","reference_id":"GLSA-202405-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-14"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/","reference_id":"MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-06T05:00:18Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/"},{"reference_url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html","reference_id":"stable-channel-update-for-desktop_23.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-06T05:00:18Z/"}],"url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/","reference_id":"VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-06T05:00:18Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/481271?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6?arch=loongarch64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6%3Farch=loongarch64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-0807"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6ffu-rt48-9kbg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/63896?format=json","vulnerability_id":"VCID-c8jn-vuvt-zffe","summary":"Heap buffer overflow in Skia in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1283","reference_id":"","reference_type":"","scores":[{"value":"0.02686","scoring_system":"epss","scoring_elements":"0.86153","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02686","scoring_system":"epss","scoring_elements":"0.86154","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02686","scoring_system":"epss","scoring_elements":"0.8614","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02686","scoring_system":"epss","scoring_elements":"0.86152","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02686","scoring_system":"epss","scoring_elements":"0.86156","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1283"},{"reference_url":"https://issues.chromium.org/issues/41494860","reference_id":"41494860","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:56:43Z/"}],"url":"https://issues.chromium.org/issues/41494860"},{"reference_url":"https://security.gentoo.org/glsa/202405-14","reference_id":"GLSA-202405-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-14"},{"reference_url":"https://security.gentoo.org/glsa/202507-07","reference_id":"GLSA-202507-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202507-07"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KN32XXNHIR6KBS4BYQTZV2JQFN4D6ZSE/","reference_id":"KN32XXNHIR6KBS4BYQTZV2JQFN4D6ZSE","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:56:43Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KN32XXNHIR6KBS4BYQTZV2JQFN4D6ZSE/"},{"reference_url":"https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:56:43Z/"}],"url":"https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WSCIL2WH2L4R4KWSRCTDWBPAMOJIYBJE/","reference_id":"WSCIL2WH2L4R4KWSRCTDWBPAMOJIYBJE","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:56:43Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WSCIL2WH2L4R4KWSRCTDWBPAMOJIYBJE/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/481271?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6?arch=loongarch64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6%3Farch=loongarch64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-1283"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c8jn-vuvt-zffe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/63841?format=json","vulnerability_id":"VCID-cpdc-ubg7-s7c2","summary":"Use after free in Canvas in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1060","reference_id":"","reference_type":"","scores":[{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.51612","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.51584","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.51565","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.51597","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.51619","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1060"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1060","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1060"},{"reference_url":"https://crbug.com/1511567","reference_id":"1511567","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:29Z/"}],"url":"https://crbug.com/1511567"},{"reference_url":"https://security.gentoo.org/glsa/202402-23","reference_id":"GLSA-202402-23","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202402-23"},{"reference_url":"https://security.gentoo.org/glsa/202405-14","reference_id":"GLSA-202405-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-14"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/","reference_id":"NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:29Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/"},{"reference_url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html","reference_id":"stable-channel-update-for-desktop_30.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:29Z/"}],"url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/","reference_id":"XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:29Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/481271?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6?arch=loongarch64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6%3Farch=loongarch64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-1060"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cpdc-ubg7-s7c2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/63816?format=json","vulnerability_id":"VCID-gsar-1j1q-wuga","summary":"Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0808","reference_id":"","reference_type":"","scores":[{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57308","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57307","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.5729","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57304","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57315","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0808"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0808","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0808"},{"reference_url":"https://crbug.com/1504936","reference_id":"1504936","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-05-09T23:34:13Z/"}],"url":"https://crbug.com/1504936"},{"reference_url":"https://security.gentoo.org/glsa/202402-23","reference_id":"GLSA-202402-23","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202402-23"},{"reference_url":"https://security.gentoo.org/glsa/202405-14","reference_id":"GLSA-202405-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-14"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/","reference_id":"MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-05-09T23:34:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/"},{"reference_url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html","reference_id":"stable-channel-update-for-desktop_23.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-05-09T23:34:13Z/"}],"url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/","reference_id":"VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-05-09T23:34:13Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/481271?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6?arch=loongarch64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6%3Farch=loongarch64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-0808"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gsar-1j1q-wuga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/63844?format=json","vulnerability_id":"VCID-j2tg-b3n5-f3fm","summary":"Use after free in Network in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1077","reference_id":"","reference_type":"","scores":[{"value":"0.00794","scoring_system":"epss","scoring_elements":"0.74331","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00794","scoring_system":"epss","scoring_elements":"0.74332","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00794","scoring_system":"epss","scoring_elements":"0.74305","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00794","scoring_system":"epss","scoring_elements":"0.74322","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00794","scoring_system":"epss","scoring_elements":"0.74336","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1077"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1077","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1077"},{"reference_url":"https://crbug.com/1511085","reference_id":"1511085","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:24Z/"}],"url":"https://crbug.com/1511085"},{"reference_url":"https://security.gentoo.org/glsa/202402-23","reference_id":"GLSA-202402-23","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202402-23"},{"reference_url":"https://security.gentoo.org/glsa/202405-14","reference_id":"GLSA-202405-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-14"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/","reference_id":"NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/"},{"reference_url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html","reference_id":"stable-channel-update-for-desktop_30.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:24Z/"}],"url":"https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/","reference_id":"XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/481271?format=json","purl":"pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6?arch=loongarch64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6%3Farch=loongarch64&distroversion=v3.23&reponame=community"}],"aliases":["CVE-2024-1077"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j2tg-b3n5-f3fm"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt5-qtwebengine@5.15.16-r6%3Farch=loongarch64&distroversion=v3.23&reponame=community"}