{"url":"http://public2.vulnerablecode.io/api/packages/48211?format=json","purl":"pkg:deb/debian/isc-kea@2.2.0-6?distro=trixie","type":"deb","namespace":"debian","name":"isc-kea","version":"2.2.0-6","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"3.0.3-1","latest_non_vulnerable_version":"3.0.3-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/23532?format=json","vulnerability_id":"VCID-35hj-tt9j-j7br","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32802.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32802.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-32802","reference_id":"","reference_type":"","scores":[{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13121","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13024","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-32802"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106737","reference_id":"1106737","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106737"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2367495","reference_id":"2367495","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2367495"},{"reference_url":"https://security.archlinux.org/AVG-2886","reference_id":"AVG-2886","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2886"},{"reference_url":"https://kb.isc.org/docs/cve-2025-32802","reference_id":"cve-2025-32802","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T17:23:10Z/"}],"url":"https://kb.isc.org/docs/cve-2025-32802"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9178","reference_id":"RHSA-2025:9178","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9178"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2025-32802"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-35hj-tt9j-j7br"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28455?format=json","vulnerability_id":"VCID-qkg3-9w5a-3fd9","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3608.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3608.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3608","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01513","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01517","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-3608"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451139","reference_id":"2451139","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451139"},{"reference_url":"https://downloads.isc.org/isc/kea/2.6.5","reference_id":"2.6.5","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-25T13:26:04Z/"}],"url":"https://downloads.isc.org/isc/kea/2.6.5"},{"reference_url":"https://downloads.isc.org/isc/kea/3.0.3","reference_id":"3.0.3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-25T13:26:04Z/"}],"url":"https://downloads.isc.org/isc/kea/3.0.3"},{"reference_url":"https://kb.isc.org/docs/cve-2026-3608","reference_id":"cve-2026-3608","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-25T13:26:04Z/"}],"url":"https://kb.isc.org/docs/cve-2026-3608"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11344","reference_id":"RHSA-2026:11344","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:11344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7342","reference_id":"RHSA-2026:7342","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7342"},{"reference_url":"https://usn.ubuntu.com/8403-1/","reference_id":"USN-8403-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8403-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2026-3608"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qkg3-9w5a-3fd9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/23533?format=json","vulnerability_id":"VCID-x5v6-qyr1-nqcn","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32803.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32803.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-32803","reference_id":"","reference_type":"","scores":[{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17736","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17578","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-32803"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106737","reference_id":"1106737","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106737"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2367496","reference_id":"2367496","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2367496"},{"reference_url":"https://security.archlinux.org/AVG-2886","reference_id":"AVG-2886","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2886"},{"reference_url":"https://kb.isc.org/docs/cve-2025-32803","reference_id":"cve-2025-32803","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T17:28:47Z/"}],"url":"https://kb.isc.org/docs/cve-2025-32803"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9178","reference_id":"RHSA-2025:9178","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9178"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2025-32803"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x5v6-qyr1-nqcn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/23531?format=json","vulnerability_id":"VCID-y33y-3pyn-sfhe","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32801.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32801.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-32801","reference_id":"","reference_type":"","scores":[{"value":"0.00047","scoring_system":"epss","scoring_elements":"0.15169","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00047","scoring_system":"epss","scoring_elements":"0.15046","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-32801"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106737","reference_id":"1106737","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106737"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2366362","reference_id":"2366362","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2366362"},{"reference_url":"https://security.archlinux.org/AVG-2886","reference_id":"AVG-2886","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2886"},{"reference_url":"https://kb.isc.org/docs/cve-2025-32801","reference_id":"cve-2025-32801","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-28T17:33:36Z/"}],"url":"https://kb.isc.org/docs/cve-2025-32801"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9178","reference_id":"RHSA-2025:9178","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9178"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2025-32801"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y33y-3pyn-sfhe"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/217491?format=json","vulnerability_id":"VCID-4r5f-tcwk-rqf7","summary":"An extension to hooks capabilities which debuted in Kea 1.4.0 introduced a memory leak for operators who are using certain hooks library facilities. In order to support multiple requests simultaneously, Kea 1.4 added a callout handle store but unfortunately the initial implementation of this store does not properly free memory in every case. Hooks which make use of query4 or query6 parameters in their callouts can leak memory, resulting in the eventual exhaustion of available memory and subsequent failure of the server process. Affects Kea DHCP 1.4.0.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-5739","reference_id":"","reference_type":"","scores":[{"value":"0.0327","scoring_system":"epss","scoring_elements":"0.87449","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0327","scoring_system":"epss","scoring_elements":"0.87492","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-5739"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48212?format=json","purl":"pkg:deb/debian/isc-kea@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48211?format=json","purl":"pkg:deb/debian/isc-kea@2.2.0-6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-35hj-tt9j-j7br"},{"vulnerability":"VCID-qkg3-9w5a-3fd9"},{"vulnerability":"VCID-x5v6-qyr1-nqcn"},{"vulnerability":"VCID-y33y-3pyn-sfhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.2.0-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2018-5739"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4r5f-tcwk-rqf7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/22466?format=json","vulnerability_id":"VCID-8anf-4e9b-dked","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11232.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11232.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11232","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10989","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11052","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-11232"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2407178","reference_id":"2407178","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2407178"},{"reference_url":"https://kb.isc.org/docs/cve-2025-11232","reference_id":"cve-2025-11232","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-29T18:22:07Z/"}],"url":"https://kb.isc.org/docs/cve-2025-11232"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:21038","reference_id":"RHSA-2025:21038","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:21038"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48212?format=json","purl":"pkg:deb/debian/isc-kea@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48211?format=json","purl":"pkg:deb/debian/isc-kea@2.2.0-6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-35hj-tt9j-j7br"},{"vulnerability":"VCID-qkg3-9w5a-3fd9"},{"vulnerability":"VCID-x5v6-qyr1-nqcn"},{"vulnerability":"VCID-y33y-3pyn-sfhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.2.0-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2025-11232"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8anf-4e9b-dked"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/197285?format=json","vulnerability_id":"VCID-jx1t-qdgq-zya5","summary":"denial of service","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-6473","reference_id":"","reference_type":"","scores":[{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.50981","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00273","scoring_system":"epss","scoring_elements":"0.51112","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-6473"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=936040","reference_id":"936040","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=936040"},{"reference_url":"https://security.archlinux.org/AVG-1032","reference_id":"AVG-1032","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1032"},{"reference_url":"https://usn.ubuntu.com/7759-1/","reference_id":"USN-7759-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7759-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48215?format=json","purl":"pkg:deb/debian/isc-kea@1.7.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@1.7.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48211?format=json","purl":"pkg:deb/debian/isc-kea@2.2.0-6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-35hj-tt9j-j7br"},{"vulnerability":"VCID-qkg3-9w5a-3fd9"},{"vulnerability":"VCID-x5v6-qyr1-nqcn"},{"vulnerability":"VCID-y33y-3pyn-sfhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.2.0-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2019-6473"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jx1t-qdgq-zya5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/25257?format=json","vulnerability_id":"VCID-nqs4-ngxs-d7bg","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-40779.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-40779.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-40779","reference_id":"","reference_type":"","scores":[{"value":"0.0009","scoring_system":"epss","scoring_elements":"0.2552","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0009","scoring_system":"epss","scoring_elements":"0.25719","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-40779"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2391373","reference_id":"2391373","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2391373"},{"reference_url":"https://kb.isc.org/docs/cve-2025-40779","reference_id":"cve-2025-40779","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-08-28T14:07:45Z/"}],"url":"https://kb.isc.org/docs/cve-2025-40779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:21006","reference_id":"RHSA-2025:21006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:21006"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48212?format=json","purl":"pkg:deb/debian/isc-kea@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48211?format=json","purl":"pkg:deb/debian/isc-kea@2.2.0-6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-35hj-tt9j-j7br"},{"vulnerability":"VCID-qkg3-9w5a-3fd9"},{"vulnerability":"VCID-x5v6-qyr1-nqcn"},{"vulnerability":"VCID-y33y-3pyn-sfhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.2.0-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2025-40779"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nqs4-ngxs-d7bg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/217490?format=json","vulnerability_id":"VCID-qu66-mknu-dkh3","summary":"The kea-dhcp4 and kea-dhcp6 servers 0.9.2 and 1.0.0-beta in ISC Kea, when certain debugging settings are used, allow remote attackers to cause a denial of service (daemon crash) via a malformed packet.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8373","reference_id":"","reference_type":"","scores":[{"value":"0.03062","scoring_system":"epss","scoring_elements":"0.87015","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03062","scoring_system":"epss","scoring_elements":"0.8706","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8373"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48212?format=json","purl":"pkg:deb/debian/isc-kea@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48211?format=json","purl":"pkg:deb/debian/isc-kea@2.2.0-6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-35hj-tt9j-j7br"},{"vulnerability":"VCID-qkg3-9w5a-3fd9"},{"vulnerability":"VCID-x5v6-qyr1-nqcn"},{"vulnerability":"VCID-y33y-3pyn-sfhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.2.0-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2015-8373"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qu66-mknu-dkh3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/197284?format=json","vulnerability_id":"VCID-s6hj-k5xz-jqha","summary":"denial of service","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-6474","reference_id":"","reference_type":"","scores":[{"value":"0.01585","scoring_system":"epss","scoring_elements":"0.82019","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01585","scoring_system":"epss","scoring_elements":"0.8208","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-6474"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=936040","reference_id":"936040","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=936040"},{"reference_url":"https://security.archlinux.org/AVG-1032","reference_id":"AVG-1032","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1032"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48215?format=json","purl":"pkg:deb/debian/isc-kea@1.7.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@1.7.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48211?format=json","purl":"pkg:deb/debian/isc-kea@2.2.0-6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-35hj-tt9j-j7br"},{"vulnerability":"VCID-qkg3-9w5a-3fd9"},{"vulnerability":"VCID-x5v6-qyr1-nqcn"},{"vulnerability":"VCID-y33y-3pyn-sfhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.2.0-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2019-6474"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s6hj-k5xz-jqha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/197286?format=json","vulnerability_id":"VCID-ukw6-j9pn-v7c5","summary":"denial of service","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-6472","reference_id":"","reference_type":"","scores":[{"value":"0.00673","scoring_system":"epss","scoring_elements":"0.7189","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00673","scoring_system":"epss","scoring_elements":"0.71976","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-6472"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=936040","reference_id":"936040","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=936040"},{"reference_url":"https://security.archlinux.org/AVG-1032","reference_id":"AVG-1032","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1032"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/48215?format=json","purl":"pkg:deb/debian/isc-kea@1.7.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@1.7.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48211?format=json","purl":"pkg:deb/debian/isc-kea@2.2.0-6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-35hj-tt9j-j7br"},{"vulnerability":"VCID-qkg3-9w5a-3fd9"},{"vulnerability":"VCID-x5v6-qyr1-nqcn"},{"vulnerability":"VCID-y33y-3pyn-sfhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.2.0-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48214?format=json","purl":"pkg:deb/debian/isc-kea@2.6.3-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qkg3-9w5a-3fd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.6.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/48213?format=json","purl":"pkg:deb/debian/isc-kea@3.0.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@3.0.3-1%3Fdistro=trixie"}],"aliases":["CVE-2019-6472"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ukw6-j9pn-v7c5"}],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/isc-kea@2.2.0-6%3Fdistro=trixie"}