{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","type":"ebuild","namespace":"app-emulation","name":"xen-tools","version":"4.12.0-r1","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"4.12.2-r1","latest_non_vulnerable_version":"4.15.3","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4191?format=json","vulnerability_id":"VCID-2ke1-fmf7-7ydt","summary":"passed through PCI devices may corrupt host memory after deassignment","references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18424.json","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18424.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18424","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30747","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30235","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30277","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30286","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30212","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30874","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30921","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30741","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30799","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30831","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30833","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30788","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30743","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30768","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30748","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30714","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30548","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.3043","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30347","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30207","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/"},{"reference_url":"https://seclists.org/bugtraq/2020/Jan/21","reference_id":"","reference_type":"","scores":[],"url":"https://seclists.org/bugtraq/2020/Jan/21"},{"reference_url":"https://www.debian.org/security/2020/dsa-4602","reference_id":"","reference_type":"","scores":[],"url":"https://www.debian.org/security/2020/dsa-4602"},{"reference_url":"http://www.openwall.com/lists/oss-security/2019/10/31/6","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2019/10/31/6"},{"reference_url":"http://xenbits.xen.org/xsa/advisory-302.html","reference_id":"","reference_type":"","scores":[],"url":"http://xenbits.xen.org/xsa/advisory-302.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767730","reference_id":"1767730","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767730"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18424","reference_id":"CVE-2019-18424","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:M/Au:N/C:C/I:C/A:C"},{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18424"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-302.html","reference_id":"XSA-302","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-302.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-18424","XSA-302"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2ke1-fmf7-7ydt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4200?format=json","vulnerability_id":"VCID-3488-1xdv-4kc8","summary":"Further issues with restartable PV type change operations","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19580.json","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19580.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19580","reference_id":"","reference_type":"","scores":[{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70033","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70045","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.7006","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70037","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70085","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70101","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70124","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.7011","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70097","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.7014","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.7015","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70129","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70179","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70186","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70185","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70161","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70203","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70235","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70204","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00622","scoring_system":"epss","scoring_elements":"0.70231","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778185","reference_id":"1778185","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778185"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-310.html","reference_id":"XSA-310","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-310.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-19580","XSA-310"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3488-1xdv-4kc8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4201?format=json","vulnerability_id":"VCID-3pzv-55sc-37ge","summary":"Bugs in dynamic height handling for AMD IOMMU pagetables","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19577.json","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19577.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19577","reference_id":"","reference_type":"","scores":[{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31404","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.3154","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31582","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31399","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31452","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31483","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31487","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31445","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31408","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31442","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31421","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31391","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31221","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31096","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31018","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.30866","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.30936","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.30942","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.30856","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.30879","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778194","reference_id":"1778194","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778194"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-311.html","reference_id":"XSA-311","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-311.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-19577","XSA-311"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3pzv-55sc-37ge"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4188?format=json","vulnerability_id":"VCID-3qjm-4egs-1kax","summary":"Issues with restartable PV type change operations","references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18421.json","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18421.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18421","reference_id":"","reference_type":"","scores":[{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.82989","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83216","published_at":"2026-05-12T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83179","published_at":"2026-05-07T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83199","published_at":"2026-05-09T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.832","published_at":"2026-05-11T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83005","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83019","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83016","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83041","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83048","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83064","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83058","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83053","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83092","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83096","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83118","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83126","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83133","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01863","scoring_system":"epss","scoring_elements":"0.83157","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/"},{"reference_url":"https://seclists.org/bugtraq/2020/Jan/21","reference_id":"","reference_type":"","scores":[],"url":"https://seclists.org/bugtraq/2020/Jan/21"},{"reference_url":"https://www.debian.org/security/2020/dsa-4602","reference_id":"","reference_type":"","scores":[],"url":"https://www.debian.org/security/2020/dsa-4602"},{"reference_url":"http://www.openwall.com/lists/oss-security/2019/10/31/3","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2019/10/31/3"},{"reference_url":"http://xenbits.xen.org/xsa/advisory-299.html","reference_id":"","reference_type":"","scores":[],"url":"http://xenbits.xen.org/xsa/advisory-299.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1765043","reference_id":"1765043","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1765043"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*","reference_id":"cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18421","reference_id":"CVE-2019-18421","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:C/I:C/A:C"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18421"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-299.html","reference_id":"XSA-299","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-299.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-18421","XSA-299"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3qjm-4egs-1kax"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4197?format=json","vulnerability_id":"VCID-7ghz-5whc-u3ee","summary":"find_next_bit() issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19582.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19582.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19582","reference_id":"","reference_type":"","scores":[{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29063","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29137","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29187","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28996","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29061","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29103","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29109","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29064","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29013","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29039","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.29016","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.2897","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.2885","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28737","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28666","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28515","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28576","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28597","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.2852","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28541","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778191","reference_id":"1778191","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778191"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-307.html","reference_id":"XSA-307","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-307.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-19582","XSA-307"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7ghz-5whc-u3ee"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4184?format=json","vulnerability_id":"VCID-9yut-bdsw-gkfy","summary":"Microarchitectural Data Sampling speculative side channel","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12127.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12127.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12127","reference_id":"","reference_type":"","scores":[{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65634","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65683","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65713","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65678","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.6573","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65742","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65763","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65748","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65719","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65754","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65767","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65753","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65766","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65777","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65776","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.6575","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65799","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65843","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65814","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65833","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1667782","reference_id":"1667782","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1667782"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129","reference_id":"929129","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1155","reference_id":"RHSA-2019:1155","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1155"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1167","reference_id":"RHSA-2019:1167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1168","reference_id":"RHSA-2019:1168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1169","reference_id":"RHSA-2019:1169","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1170","reference_id":"RHSA-2019:1170","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1171","reference_id":"RHSA-2019:1171","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1171"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1172","reference_id":"RHSA-2019:1172","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1172"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1174","reference_id":"RHSA-2019:1174","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1174"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1175","reference_id":"RHSA-2019:1175","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1175"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1176","reference_id":"RHSA-2019:1176","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1177","reference_id":"RHSA-2019:1177","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1177"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1178","reference_id":"RHSA-2019:1178","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1178"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1179","reference_id":"RHSA-2019:1179","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1180","reference_id":"RHSA-2019:1180","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1180"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1181","reference_id":"RHSA-2019:1181","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1181"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1182","reference_id":"RHSA-2019:1182","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1182"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1183","reference_id":"RHSA-2019:1183","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1183"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1184","reference_id":"RHSA-2019:1184","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1184"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1185","reference_id":"RHSA-2019:1185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1186","reference_id":"RHSA-2019:1186","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1186"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1187","reference_id":"RHSA-2019:1187","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1187"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1188","reference_id":"RHSA-2019:1188","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1188"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1189","reference_id":"RHSA-2019:1189","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1189"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1190","reference_id":"RHSA-2019:1190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1193","reference_id":"RHSA-2019:1193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1194","reference_id":"RHSA-2019:1194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1195","reference_id":"RHSA-2019:1195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1196","reference_id":"RHSA-2019:1196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1197","reference_id":"RHSA-2019:1197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1198","reference_id":"RHSA-2019:1198","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1198"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1199","reference_id":"RHSA-2019:1199","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1199"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1200","reference_id":"RHSA-2019:1200","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1200"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1201","reference_id":"RHSA-2019:1201","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1201"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1202","reference_id":"RHSA-2019:1202","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1202"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1203","reference_id":"RHSA-2019:1203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1204","reference_id":"RHSA-2019:1204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1205","reference_id":"RHSA-2019:1205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1206","reference_id":"RHSA-2019:1206","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1206"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1207","reference_id":"RHSA-2019:1207","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1207"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1208","reference_id":"RHSA-2019:1208","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1208"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1209","reference_id":"RHSA-2019:1209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1455","reference_id":"RHSA-2019:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2553","reference_id":"RHSA-2019:2553","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2553"},{"reference_url":"https://usn.ubuntu.com/3977-1/","reference_id":"USN-3977-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-1/"},{"reference_url":"https://usn.ubuntu.com/3977-2/","reference_id":"USN-3977-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-2/"},{"reference_url":"https://usn.ubuntu.com/3977-3/","reference_id":"USN-3977-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-3/"},{"reference_url":"https://usn.ubuntu.com/3978-1/","reference_id":"USN-3978-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3978-1/"},{"reference_url":"https://usn.ubuntu.com/3979-1/","reference_id":"USN-3979-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3979-1/"},{"reference_url":"https://usn.ubuntu.com/3980-1/","reference_id":"USN-3980-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3980-1/"},{"reference_url":"https://usn.ubuntu.com/3980-2/","reference_id":"USN-3980-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3980-2/"},{"reference_url":"https://usn.ubuntu.com/3981-1/","reference_id":"USN-3981-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3981-1/"},{"reference_url":"https://usn.ubuntu.com/3981-2/","reference_id":"USN-3981-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3981-2/"},{"reference_url":"https://usn.ubuntu.com/3982-1/","reference_id":"USN-3982-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3982-1/"},{"reference_url":"https://usn.ubuntu.com/3982-2/","reference_id":"USN-3982-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3982-2/"},{"reference_url":"https://usn.ubuntu.com/3983-1/","reference_id":"USN-3983-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3983-1/"},{"reference_url":"https://usn.ubuntu.com/3983-2/","reference_id":"USN-3983-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3983-2/"},{"reference_url":"https://usn.ubuntu.com/3984-1/","reference_id":"USN-3984-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3984-1/"},{"reference_url":"https://usn.ubuntu.com/3985-1/","reference_id":"USN-3985-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3985-1/"},{"reference_url":"https://usn.ubuntu.com/3985-2/","reference_id":"USN-3985-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3985-2/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-297.html","reference_id":"XSA-297","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-297.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2018-12127"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9yut-bdsw-gkfy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4187?format=json","vulnerability_id":"VCID-bd46-xyhc-8uf5","summary":"missing descriptor table limit checking in x86 PV emulation","references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18425.json","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18425.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18425","reference_id":"","reference_type":"","scores":[{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89523","published_at":"2026-04-01T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89638","published_at":"2026-05-12T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.8962","published_at":"2026-05-07T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89632","published_at":"2026-05-09T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89628","published_at":"2026-05-11T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89527","published_at":"2026-04-02T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.8954","published_at":"2026-04-04T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89541","published_at":"2026-04-07T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89557","published_at":"2026-04-08T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89561","published_at":"2026-04-09T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89569","published_at":"2026-04-11T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89567","published_at":"2026-04-12T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89562","published_at":"2026-04-13T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89575","published_at":"2026-04-16T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89577","published_at":"2026-04-18T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89574","published_at":"2026-04-21T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89588","published_at":"2026-04-24T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89593","published_at":"2026-04-29T12:55:00Z"},{"value":"0.04874","scoring_system":"epss","scoring_elements":"0.89601","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/"},{"reference_url":"https://seclists.org/bugtraq/2020/Jan/21","reference_id":"","reference_type":"","scores":[],"url":"https://seclists.org/bugtraq/2020/Jan/21"},{"reference_url":"https://www.debian.org/security/2020/dsa-4602","reference_id":"","reference_type":"","scores":[],"url":"https://www.debian.org/security/2020/dsa-4602"},{"reference_url":"http://www.openwall.com/lists/oss-security/2019/10/31/2","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2019/10/31/2"},{"reference_url":"http://xenbits.xen.org/xsa/advisory-298.html","reference_id":"","reference_type":"","scores":[],"url":"http://xenbits.xen.org/xsa/advisory-298.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1771340","reference_id":"1771340","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1771340"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*","reference_id":"cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18425","reference_id":"CVE-2019-18425","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:C/I:C/A:C"},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18425"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-298.html","reference_id":"XSA-298","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-298.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-18425","XSA-298"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bd46-xyhc-8uf5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4182?format=json","vulnerability_id":"VCID-favj-4du1-qqe8","summary":"VCPUOP_initialise DoS","references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18420.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18420.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18420","reference_id":"","reference_type":"","scores":[{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88458","published_at":"2026-04-01T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88594","published_at":"2026-05-12T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88569","published_at":"2026-05-07T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88583","published_at":"2026-05-09T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88582","published_at":"2026-05-11T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88466","published_at":"2026-04-02T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88482","published_at":"2026-04-04T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88485","published_at":"2026-04-07T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88503","published_at":"2026-04-08T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.8851","published_at":"2026-04-09T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88521","published_at":"2026-04-21T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88513","published_at":"2026-04-13T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88527","published_at":"2026-04-16T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88523","published_at":"2026-04-18T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88537","published_at":"2026-04-24T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88543","published_at":"2026-04-26T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88542","published_at":"2026-04-29T12:55:00Z"},{"value":"0.04046","scoring_system":"epss","scoring_elements":"0.88553","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/"},{"reference_url":"https://seclists.org/bugtraq/2020/Jan/21","reference_id":"","reference_type":"","scores":[],"url":"https://seclists.org/bugtraq/2020/Jan/21"},{"reference_url":"https://www.debian.org/security/2020/dsa-4602","reference_id":"","reference_type":"","scores":[],"url":"https://www.debian.org/security/2020/dsa-4602"},{"reference_url":"http://www.openwall.com/lists/oss-security/2019/10/31/1","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2019/10/31/1"},{"reference_url":"http://xenbits.xen.org/xsa/advisory-296.html","reference_id":"","reference_type":"","scores":[],"url":"http://xenbits.xen.org/xsa/advisory-296.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1771366","reference_id":"1771366","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1771366"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*","reference_id":"cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18420","reference_id":"CVE-2019-18420","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:S/C:N/I:N/A:C"},{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18420"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-296.html","reference_id":"XSA-296","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-296.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-18420"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-favj-4du1-qqe8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4186?format=json","vulnerability_id":"VCID-k45n-139y-pyeq","summary":"Microarchitectural Data Sampling speculative side channel","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11091.json","reference_id":"","reference_type":"","scores":[{"value":"3.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11091.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11091","reference_id":"","reference_type":"","scores":[{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82207","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.8222","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.8224","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82236","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82262","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.8227","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82289","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82282","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82276","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82312","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82314","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82335","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82346","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.8235","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82368","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82389","published_at":"2026-05-07T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.8241","published_at":"2026-05-09T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82409","published_at":"2026-05-11T12:55:00Z"},{"value":"0.01697","scoring_system":"epss","scoring_elements":"0.82425","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1705312","reference_id":"1705312","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1705312"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129","reference_id":"929129","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1155","reference_id":"RHSA-2019:1155","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1155"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1167","reference_id":"RHSA-2019:1167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1168","reference_id":"RHSA-2019:1168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1169","reference_id":"RHSA-2019:1169","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1170","reference_id":"RHSA-2019:1170","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1171","reference_id":"RHSA-2019:1171","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1171"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1172","reference_id":"RHSA-2019:1172","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1172"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1174","reference_id":"RHSA-2019:1174","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1174"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1175","reference_id":"RHSA-2019:1175","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1175"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1176","reference_id":"RHSA-2019:1176","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1177","reference_id":"RHSA-2019:1177","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1177"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1178","reference_id":"RHSA-2019:1178","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1178"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1179","reference_id":"RHSA-2019:1179","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1180","reference_id":"RHSA-2019:1180","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1180"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1181","reference_id":"RHSA-2019:1181","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1181"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1182","reference_id":"RHSA-2019:1182","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1182"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1183","reference_id":"RHSA-2019:1183","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1183"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1184","reference_id":"RHSA-2019:1184","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1184"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1185","reference_id":"RHSA-2019:1185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1186","reference_id":"RHSA-2019:1186","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1186"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1187","reference_id":"RHSA-2019:1187","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1187"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1188","reference_id":"RHSA-2019:1188","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1188"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1189","reference_id":"RHSA-2019:1189","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1189"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1190","reference_id":"RHSA-2019:1190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1193","reference_id":"RHSA-2019:1193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1194","reference_id":"RHSA-2019:1194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1195","reference_id":"RHSA-2019:1195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1196","reference_id":"RHSA-2019:1196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1197","reference_id":"RHSA-2019:1197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1198","reference_id":"RHSA-2019:1198","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1198"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1199","reference_id":"RHSA-2019:1199","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1199"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1200","reference_id":"RHSA-2019:1200","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1200"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1201","reference_id":"RHSA-2019:1201","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1201"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1202","reference_id":"RHSA-2019:1202","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1202"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1203","reference_id":"RHSA-2019:1203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1204","reference_id":"RHSA-2019:1204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1205","reference_id":"RHSA-2019:1205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1206","reference_id":"RHSA-2019:1206","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1206"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1207","reference_id":"RHSA-2019:1207","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1207"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1208","reference_id":"RHSA-2019:1208","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1208"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1209","reference_id":"RHSA-2019:1209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1455","reference_id":"RHSA-2019:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2553","reference_id":"RHSA-2019:2553","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2553"},{"reference_url":"https://usn.ubuntu.com/3977-1/","reference_id":"USN-3977-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-1/"},{"reference_url":"https://usn.ubuntu.com/3977-2/","reference_id":"USN-3977-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-2/"},{"reference_url":"https://usn.ubuntu.com/3977-3/","reference_id":"USN-3977-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-3/"},{"reference_url":"https://usn.ubuntu.com/3978-1/","reference_id":"USN-3978-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3978-1/"},{"reference_url":"https://usn.ubuntu.com/3979-1/","reference_id":"USN-3979-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3979-1/"},{"reference_url":"https://usn.ubuntu.com/3980-1/","reference_id":"USN-3980-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3980-1/"},{"reference_url":"https://usn.ubuntu.com/3980-2/","reference_id":"USN-3980-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3980-2/"},{"reference_url":"https://usn.ubuntu.com/3981-1/","reference_id":"USN-3981-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3981-1/"},{"reference_url":"https://usn.ubuntu.com/3981-2/","reference_id":"USN-3981-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3981-2/"},{"reference_url":"https://usn.ubuntu.com/3982-1/","reference_id":"USN-3982-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3982-1/"},{"reference_url":"https://usn.ubuntu.com/3982-2/","reference_id":"USN-3982-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3982-2/"},{"reference_url":"https://usn.ubuntu.com/3983-1/","reference_id":"USN-3983-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3983-1/"},{"reference_url":"https://usn.ubuntu.com/3983-2/","reference_id":"USN-3983-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3983-2/"},{"reference_url":"https://usn.ubuntu.com/3984-1/","reference_id":"USN-3984-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3984-1/"},{"reference_url":"https://usn.ubuntu.com/3985-1/","reference_id":"USN-3985-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3985-1/"},{"reference_url":"https://usn.ubuntu.com/3985-2/","reference_id":"USN-3985-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3985-2/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-297.html","reference_id":"XSA-297","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-297.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-11091"],"risk_score":1.7,"exploitability":"0.5","weighted_severity":"3.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k45n-139y-pyeq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4199?format=json","vulnerability_id":"VCID-mcd1-vc14-y3g5","summary":"Linear pagetable use / entry miscounts","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19578.json","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19578.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19578","reference_id":"","reference_type":"","scores":[{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32575","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.3271","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32746","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32567","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32615","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.3264","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32643","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32604","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32577","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32592","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32562","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32406","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32291","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32206","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32064","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32128","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32137","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32044","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32066","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778161","reference_id":"1778161","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778161"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-309.html","reference_id":"XSA-309","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-309.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-19578","XSA-309"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mcd1-vc14-y3g5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4193?format=json","vulnerability_id":"VCID-nhj6-dhyx-xbas","summary":"x86: Machine Check Error on Page Size Change DoS","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12207.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12207.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12207","reference_id":"","reference_type":"","scores":[{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49484","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49514","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49541","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49493","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49548","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49543","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.4956","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49532","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49534","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49581","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49578","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49538","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49503","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49421","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49481","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49511","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49459","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49486","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0154","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0154"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646768","reference_id":"1646768","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646768"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3832","reference_id":"RHSA-2019:3832","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3832"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3833","reference_id":"RHSA-2019:3833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3834","reference_id":"RHSA-2019:3834","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3834"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3835","reference_id":"RHSA-2019:3835","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3835"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3836","reference_id":"RHSA-2019:3836","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3836"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3837","reference_id":"RHSA-2019:3837","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3837"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3838","reference_id":"RHSA-2019:3838","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3838"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3839","reference_id":"RHSA-2019:3839","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3839"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3840","reference_id":"RHSA-2019:3840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3841","reference_id":"RHSA-2019:3841","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3841"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3842","reference_id":"RHSA-2019:3842","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3843","reference_id":"RHSA-2019:3843","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3843"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3844","reference_id":"RHSA-2019:3844","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3844"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3860","reference_id":"RHSA-2019:3860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3916","reference_id":"RHSA-2019:3916","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3916"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3936","reference_id":"RHSA-2019:3936","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3936"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3941","reference_id":"RHSA-2019:3941","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3941"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0026","reference_id":"RHSA-2020:0026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0028","reference_id":"RHSA-2020:0028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0204","reference_id":"RHSA-2020:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0204"},{"reference_url":"https://usn.ubuntu.com/4183-1/","reference_id":"USN-4183-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4183-1/"},{"reference_url":"https://usn.ubuntu.com/4184-1/","reference_id":"USN-4184-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4184-1/"},{"reference_url":"https://usn.ubuntu.com/4185-1/","reference_id":"USN-4185-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4185-1/"},{"reference_url":"https://usn.ubuntu.com/4185-2/","reference_id":"USN-4185-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4185-2/"},{"reference_url":"https://usn.ubuntu.com/4186-1/","reference_id":"USN-4186-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4186-1/"},{"reference_url":"https://usn.ubuntu.com/4186-2/","reference_id":"USN-4186-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4186-2/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-304.html","reference_id":"XSA-304","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-304.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2018-12207","XSA-304"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nhj6-dhyx-xbas"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4194?format=json","vulnerability_id":"VCID-ns7u-fmmr-5ba4","summary":"TSX Asynchronous Abort speculative side channel","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11135.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11135.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11135","reference_id":"","reference_type":"","scores":[{"value":"0.00314","scoring_system":"epss","scoring_elements":"0.54573","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00314","scoring_system":"epss","scoring_elements":"0.54558","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54938","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54908","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54958","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54957","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54969","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54951","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54928","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54966","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54947","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.5495","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54842","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54912","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54965","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54925","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54917","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54865","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.54907","published_at":"2026-05-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0154","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0154"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11139","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11139"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1753062","reference_id":"1753062","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1753062"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://security.archlinux.org/ASA-201911-14","reference_id":"ASA-201911-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201911-14"},{"reference_url":"https://security.archlinux.org/AVG-1068","reference_id":"AVG-1068","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1068"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3832","reference_id":"RHSA-2019:3832","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3832"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3833","reference_id":"RHSA-2019:3833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3834","reference_id":"RHSA-2019:3834","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3834"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3835","reference_id":"RHSA-2019:3835","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3835"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3836","reference_id":"RHSA-2019:3836","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3836"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3837","reference_id":"RHSA-2019:3837","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3837"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3838","reference_id":"RHSA-2019:3838","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3838"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3839","reference_id":"RHSA-2019:3839","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3839"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3840","reference_id":"RHSA-2019:3840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3841","reference_id":"RHSA-2019:3841","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3841"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3842","reference_id":"RHSA-2019:3842","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3843","reference_id":"RHSA-2019:3843","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3843"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3844","reference_id":"RHSA-2019:3844","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3844"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3860","reference_id":"RHSA-2019:3860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3936","reference_id":"RHSA-2019:3936","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3936"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0026","reference_id":"RHSA-2020:0026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0028","reference_id":"RHSA-2020:0028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0204","reference_id":"RHSA-2020:0204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0279","reference_id":"RHSA-2020:0279","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0279"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0366","reference_id":"RHSA-2020:0366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0555","reference_id":"RHSA-2020:0555","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0555"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0666","reference_id":"RHSA-2020:0666","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0666"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0730","reference_id":"RHSA-2020:0730","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0730"},{"reference_url":"https://usn.ubuntu.com/4182-1/","reference_id":"USN-4182-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4182-1/"},{"reference_url":"https://usn.ubuntu.com/4182-2/","reference_id":"USN-4182-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4182-2/"},{"reference_url":"https://usn.ubuntu.com/4183-1/","reference_id":"USN-4183-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4183-1/"},{"reference_url":"https://usn.ubuntu.com/4184-1/","reference_id":"USN-4184-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4184-1/"},{"reference_url":"https://usn.ubuntu.com/4185-1/","reference_id":"USN-4185-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4185-1/"},{"reference_url":"https://usn.ubuntu.com/4185-2/","reference_id":"USN-4185-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4185-2/"},{"reference_url":"https://usn.ubuntu.com/4186-1/","reference_id":"USN-4186-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4186-1/"},{"reference_url":"https://usn.ubuntu.com/4186-2/","reference_id":"USN-4186-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4186-2/"},{"reference_url":"https://usn.ubuntu.com/4187-1/","reference_id":"USN-4187-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4187-1/"},{"reference_url":"https://usn.ubuntu.com/4188-1/","reference_id":"USN-4188-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4188-1/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-305.html","reference_id":"XSA-305","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-305.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-11135","XSA-305"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ns7u-fmmr-5ba4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4196?format=json","vulnerability_id":"VCID-qg9d-zmph-vufm","summary":"find_next_bit() issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19581.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19581.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19581","reference_id":"","reference_type":"","scores":[{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28357","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28469","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28261","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28327","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.2837","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28374","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28331","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28273","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28285","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28266","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.2822","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28132","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.2802","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.27941","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.27776","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.2784","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.27866","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.27782","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.27798","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1801083","reference_id":"1801083","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1801083"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-307.html","reference_id":"XSA-307","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-307.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-19581"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qg9d-zmph-vufm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4183?format=json","vulnerability_id":"VCID-vh89-pyaz-xbdg","summary":"Microarchitectural Data Sampling speculative side channel","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12126.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12126.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12126","reference_id":"","reference_type":"","scores":[{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65634","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65683","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65713","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65678","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.6573","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65742","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65763","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65748","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65719","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65754","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65777","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65776","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.6575","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65799","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65767","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65753","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.65766","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00589","scoring_system":"epss","scoring_elements":"0.69306","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00589","scoring_system":"epss","scoring_elements":"0.69313","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00589","scoring_system":"epss","scoring_elements":"0.69282","published_at":"2026-05-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646781","reference_id":"1646781","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646781"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129","reference_id":"929129","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1155","reference_id":"RHSA-2019:1155","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1155"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1167","reference_id":"RHSA-2019:1167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1168","reference_id":"RHSA-2019:1168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1169","reference_id":"RHSA-2019:1169","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1170","reference_id":"RHSA-2019:1170","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1171","reference_id":"RHSA-2019:1171","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1171"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1172","reference_id":"RHSA-2019:1172","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1172"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1174","reference_id":"RHSA-2019:1174","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1174"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1175","reference_id":"RHSA-2019:1175","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1175"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1176","reference_id":"RHSA-2019:1176","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1177","reference_id":"RHSA-2019:1177","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1177"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1178","reference_id":"RHSA-2019:1178","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1178"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1179","reference_id":"RHSA-2019:1179","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1180","reference_id":"RHSA-2019:1180","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1180"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1181","reference_id":"RHSA-2019:1181","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1181"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1182","reference_id":"RHSA-2019:1182","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1182"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1183","reference_id":"RHSA-2019:1183","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1183"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1184","reference_id":"RHSA-2019:1184","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1184"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1185","reference_id":"RHSA-2019:1185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1186","reference_id":"RHSA-2019:1186","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1186"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1187","reference_id":"RHSA-2019:1187","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1187"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1188","reference_id":"RHSA-2019:1188","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1188"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1189","reference_id":"RHSA-2019:1189","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1189"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1190","reference_id":"RHSA-2019:1190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1193","reference_id":"RHSA-2019:1193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1194","reference_id":"RHSA-2019:1194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1195","reference_id":"RHSA-2019:1195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1196","reference_id":"RHSA-2019:1196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1197","reference_id":"RHSA-2019:1197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1198","reference_id":"RHSA-2019:1198","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1198"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1199","reference_id":"RHSA-2019:1199","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1199"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1200","reference_id":"RHSA-2019:1200","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1200"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1201","reference_id":"RHSA-2019:1201","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1201"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1202","reference_id":"RHSA-2019:1202","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1202"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1203","reference_id":"RHSA-2019:1203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1204","reference_id":"RHSA-2019:1204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1205","reference_id":"RHSA-2019:1205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1206","reference_id":"RHSA-2019:1206","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1206"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1207","reference_id":"RHSA-2019:1207","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1207"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1208","reference_id":"RHSA-2019:1208","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1208"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1209","reference_id":"RHSA-2019:1209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1455","reference_id":"RHSA-2019:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2553","reference_id":"RHSA-2019:2553","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2553"},{"reference_url":"https://usn.ubuntu.com/3977-1/","reference_id":"USN-3977-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-1/"},{"reference_url":"https://usn.ubuntu.com/3977-2/","reference_id":"USN-3977-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-2/"},{"reference_url":"https://usn.ubuntu.com/3977-3/","reference_id":"USN-3977-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-3/"},{"reference_url":"https://usn.ubuntu.com/3978-1/","reference_id":"USN-3978-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3978-1/"},{"reference_url":"https://usn.ubuntu.com/3979-1/","reference_id":"USN-3979-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3979-1/"},{"reference_url":"https://usn.ubuntu.com/3980-1/","reference_id":"USN-3980-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3980-1/"},{"reference_url":"https://usn.ubuntu.com/3980-2/","reference_id":"USN-3980-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3980-2/"},{"reference_url":"https://usn.ubuntu.com/3981-1/","reference_id":"USN-3981-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3981-1/"},{"reference_url":"https://usn.ubuntu.com/3981-2/","reference_id":"USN-3981-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3981-2/"},{"reference_url":"https://usn.ubuntu.com/3982-1/","reference_id":"USN-3982-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3982-1/"},{"reference_url":"https://usn.ubuntu.com/3982-2/","reference_id":"USN-3982-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3982-2/"},{"reference_url":"https://usn.ubuntu.com/3983-1/","reference_id":"USN-3983-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3983-1/"},{"reference_url":"https://usn.ubuntu.com/3983-2/","reference_id":"USN-3983-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3983-2/"},{"reference_url":"https://usn.ubuntu.com/3984-1/","reference_id":"USN-3984-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3984-1/"},{"reference_url":"https://usn.ubuntu.com/3985-1/","reference_id":"USN-3985-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3985-1/"},{"reference_url":"https://usn.ubuntu.com/3985-2/","reference_id":"USN-3985-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3985-2/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-297.html","reference_id":"XSA-297","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-297.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2018-12126","XSA-297"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vh89-pyaz-xbdg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4190?format=json","vulnerability_id":"VCID-wqv9-j35n-aqen","summary":"add-to-physmap can be abused to DoS Arm hosts","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18423.json","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18423.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18423","reference_id":"","reference_type":"","scores":[{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89876","published_at":"2026-04-01T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89985","published_at":"2026-05-12T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89982","published_at":"2026-05-09T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89977","published_at":"2026-05-11T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.8988","published_at":"2026-04-02T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89892","published_at":"2026-04-04T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89897","published_at":"2026-04-07T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89913","published_at":"2026-04-08T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89919","published_at":"2026-04-09T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89926","published_at":"2026-04-11T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89924","published_at":"2026-04-12T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89917","published_at":"2026-04-13T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89931","published_at":"2026-04-16T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89933","published_at":"2026-04-18T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89928","published_at":"2026-04-21T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89944","published_at":"2026-04-24T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89943","published_at":"2026-04-26T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89942","published_at":"2026-04-29T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89955","published_at":"2026-05-05T12:55:00Z"},{"value":"0.05187","scoring_system":"epss","scoring_elements":"0.89971","published_at":"2026-05-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/"},{"reference_url":"https://seclists.org/bugtraq/2020/Jan/21","reference_id":"","reference_type":"","scores":[],"url":"https://seclists.org/bugtraq/2020/Jan/21"},{"reference_url":"https://www.debian.org/security/2020/dsa-4602","reference_id":"","reference_type":"","scores":[],"url":"https://www.debian.org/security/2020/dsa-4602"},{"reference_url":"http://www.openwall.com/lists/oss-security/2019/10/31/4","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2019/10/31/4"},{"reference_url":"http://xenbits.xen.org/xsa/advisory-301.html","reference_id":"","reference_type":"","scores":[],"url":"http://xenbits.xen.org/xsa/advisory-301.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1771344","reference_id":"1771344","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1771344"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:arm:*","reference_id":"cpe:2.3:o:xen:xen:*:*:*:*:*:*:arm:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:arm:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18423","reference_id":"CVE-2019-18423","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:S/C:C/I:C/A:C"},{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18423"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-301.html","reference_id":"XSA-301","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-301.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-18423","XSA-301"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wqv9-j35n-aqen"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4185?format=json","vulnerability_id":"VCID-z9r8-s6v7-zkgd","summary":"Microarchitectural Data Sampling speculative side channel","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12130.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12130.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12130","reference_id":"","reference_type":"","scores":[{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67464","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.675","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67521","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67551","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67565","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67588","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67574","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67541","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67576","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67589","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00538","scoring_system":"epss","scoring_elements":"0.67568","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00642","scoring_system":"epss","scoring_elements":"0.70714","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00642","scoring_system":"epss","scoring_elements":"0.70683","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00642","scoring_system":"epss","scoring_elements":"0.70693","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00642","scoring_system":"epss","scoring_elements":"0.70692","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00642","scoring_system":"epss","scoring_elements":"0.7067","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00642","scoring_system":"epss","scoring_elements":"0.70711","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00642","scoring_system":"epss","scoring_elements":"0.70744","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00642","scoring_system":"epss","scoring_elements":"0.70742","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12130"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646784","reference_id":"1646784","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646784"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129","reference_id":"929129","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1155","reference_id":"RHSA-2019:1155","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1155"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1167","reference_id":"RHSA-2019:1167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1168","reference_id":"RHSA-2019:1168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1169","reference_id":"RHSA-2019:1169","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1170","reference_id":"RHSA-2019:1170","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1171","reference_id":"RHSA-2019:1171","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1171"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1172","reference_id":"RHSA-2019:1172","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1172"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1174","reference_id":"RHSA-2019:1174","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1174"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1175","reference_id":"RHSA-2019:1175","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1175"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1176","reference_id":"RHSA-2019:1176","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1177","reference_id":"RHSA-2019:1177","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1177"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1178","reference_id":"RHSA-2019:1178","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1178"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1179","reference_id":"RHSA-2019:1179","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1180","reference_id":"RHSA-2019:1180","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1180"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1181","reference_id":"RHSA-2019:1181","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1181"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1182","reference_id":"RHSA-2019:1182","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1182"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1183","reference_id":"RHSA-2019:1183","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1183"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1184","reference_id":"RHSA-2019:1184","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1184"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1185","reference_id":"RHSA-2019:1185","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1186","reference_id":"RHSA-2019:1186","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1186"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1187","reference_id":"RHSA-2019:1187","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1187"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1188","reference_id":"RHSA-2019:1188","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1188"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1189","reference_id":"RHSA-2019:1189","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1189"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1190","reference_id":"RHSA-2019:1190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1193","reference_id":"RHSA-2019:1193","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1193"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1194","reference_id":"RHSA-2019:1194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1194"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1195","reference_id":"RHSA-2019:1195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1196","reference_id":"RHSA-2019:1196","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1196"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1197","reference_id":"RHSA-2019:1197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1198","reference_id":"RHSA-2019:1198","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1198"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1199","reference_id":"RHSA-2019:1199","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1199"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1200","reference_id":"RHSA-2019:1200","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1200"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1201","reference_id":"RHSA-2019:1201","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1201"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1202","reference_id":"RHSA-2019:1202","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1202"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1203","reference_id":"RHSA-2019:1203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1204","reference_id":"RHSA-2019:1204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1205","reference_id":"RHSA-2019:1205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1206","reference_id":"RHSA-2019:1206","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1206"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1207","reference_id":"RHSA-2019:1207","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1207"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1208","reference_id":"RHSA-2019:1208","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1208"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1209","reference_id":"RHSA-2019:1209","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1209"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1455","reference_id":"RHSA-2019:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2553","reference_id":"RHSA-2019:2553","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2553"},{"reference_url":"https://usn.ubuntu.com/3977-1/","reference_id":"USN-3977-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-1/"},{"reference_url":"https://usn.ubuntu.com/3977-2/","reference_id":"USN-3977-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-2/"},{"reference_url":"https://usn.ubuntu.com/3977-3/","reference_id":"USN-3977-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3977-3/"},{"reference_url":"https://usn.ubuntu.com/3978-1/","reference_id":"USN-3978-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3978-1/"},{"reference_url":"https://usn.ubuntu.com/3979-1/","reference_id":"USN-3979-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3979-1/"},{"reference_url":"https://usn.ubuntu.com/3980-1/","reference_id":"USN-3980-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3980-1/"},{"reference_url":"https://usn.ubuntu.com/3980-2/","reference_id":"USN-3980-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3980-2/"},{"reference_url":"https://usn.ubuntu.com/3981-1/","reference_id":"USN-3981-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3981-1/"},{"reference_url":"https://usn.ubuntu.com/3981-2/","reference_id":"USN-3981-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3981-2/"},{"reference_url":"https://usn.ubuntu.com/3982-1/","reference_id":"USN-3982-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3982-1/"},{"reference_url":"https://usn.ubuntu.com/3982-2/","reference_id":"USN-3982-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3982-2/"},{"reference_url":"https://usn.ubuntu.com/3983-1/","reference_id":"USN-3983-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3983-1/"},{"reference_url":"https://usn.ubuntu.com/3983-2/","reference_id":"USN-3983-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3983-2/"},{"reference_url":"https://usn.ubuntu.com/3984-1/","reference_id":"USN-3984-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3984-1/"},{"reference_url":"https://usn.ubuntu.com/3985-1/","reference_id":"USN-3985-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3985-1/"},{"reference_url":"https://usn.ubuntu.com/3985-2/","reference_id":"USN-3985-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3985-2/"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-297.html","reference_id":"XSA-297","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-297.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2018-12130"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z9r8-s6v7-zkgd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4198?format=json","vulnerability_id":"VCID-zm6z-2dnk-hyf8","summary":"VMX: VMentry failure with debug exceptions and blocked states","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19583.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19583.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19583","reference_id":"","reference_type":"","scores":[{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83875","published_at":"2026-04-01T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83888","published_at":"2026-04-02T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83904","published_at":"2026-04-04T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83907","published_at":"2026-04-07T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.8393","published_at":"2026-04-08T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83937","published_at":"2026-04-09T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83953","published_at":"2026-04-11T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83947","published_at":"2026-04-12T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83943","published_at":"2026-04-13T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83967","published_at":"2026-04-16T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83968","published_at":"2026-04-18T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.8397","published_at":"2026-04-21T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.83996","published_at":"2026-04-24T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84003","published_at":"2026-04-26T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84008","published_at":"2026-04-29T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84029","published_at":"2026-05-05T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84051","published_at":"2026-05-07T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84067","published_at":"2026-05-11T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84084","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-19583"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778171","reference_id":"1778171","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778171"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944","reference_id":"947944","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944"},{"reference_url":"https://security.gentoo.org/glsa/202003-56","reference_id":"GLSA-202003-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-308.html","reference_id":"XSA-308","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-308.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77722?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.12.0-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}],"aliases":["CVE-2019-19583","XSA-308"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zm6z-2dnk-hyf8"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.12.0-r1"}