{"url":"http://public2.vulnerablecode.io/api/packages/92275?format=json","purl":"pkg:rpm/redhat/podman@3:4.4.1-21.rhaos4.14?arch=el8","type":"rpm","namespace":"redhat","name":"podman","version":"3:4.4.1-21.rhaos4.14","qualifiers":{"arch":"el8"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/73998?format=json","vulnerability_id":"VCID-hfxt-nnd8-dfc8","summary":"encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34156.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34156.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34156","reference_id":"","reference_type":"","scores":[{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53134","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53139","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53189","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53174","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53158","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53197","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53204","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53187","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.5316","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53171","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53102","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53126","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53094","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00298","scoring_system":"epss","scoring_elements":"0.53145","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34156"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34156","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34156"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2310528","reference_id":"2310528","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2310528"},{"reference_url":"https://go.dev/cl/611239","reference_id":"611239","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T14:04:16Z/"}],"url":"https://go.dev/cl/611239"},{"reference_url":"https://go.dev/issue/69139","reference_id":"69139","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T14:04:16Z/"}],"url":"https://go.dev/issue/69139"},{"reference_url":"https://pkg.go.dev/vuln/GO-2024-3106","reference_id":"GO-2024-3106","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T14:04:16Z/"}],"url":"https://pkg.go.dev/vuln/GO-2024-3106"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10186","reference_id":"RHSA-2024:10186","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10186"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10236","reference_id":"RHSA-2024:10236","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10236"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10883","reference_id":"RHSA-2024:10883","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10883"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10906","reference_id":"RHSA-2024:10906","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10906"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11216","reference_id":"RHSA-2024:11216","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11216"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11217","reference_id":"RHSA-2024:11217","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11217"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6908","reference_id":"RHSA-2024:6908","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6908"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6912","reference_id":"RHSA-2024:6912","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6912"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6913","reference_id":"RHSA-2024:6913","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6913"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6914","reference_id":"RHSA-2024:6914","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6914"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6946","reference_id":"RHSA-2024:6946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6946"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6947","reference_id":"RHSA-2024:6947","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6947"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7102","reference_id":"RHSA-2024:7102","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7102"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7103","reference_id":"RHSA-2024:7103","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7103"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7135","reference_id":"RHSA-2024:7135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7136","reference_id":"RHSA-2024:7136","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7202","reference_id":"RHSA-2024:7202","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7202"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7203","reference_id":"RHSA-2024:7203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7204","reference_id":"RHSA-2024:7204","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7204"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7205","reference_id":"RHSA-2024:7205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7206","reference_id":"RHSA-2024:7206","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7206"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7207","reference_id":"RHSA-2024:7207","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7207"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7208","reference_id":"RHSA-2024:7208","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7208"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7261","reference_id":"RHSA-2024:7261","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7261"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7350","reference_id":"RHSA-2024:7350","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7351","reference_id":"RHSA-2024:7351","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7351"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7449","reference_id":"RHSA-2024:7449","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7449"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7455","reference_id":"RHSA-2024:7455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7456","reference_id":"RHSA-2024:7456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7485","reference_id":"RHSA-2024:7485","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7485"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7487","reference_id":"RHSA-2024:7487","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7487"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7488","reference_id":"RHSA-2024:7488","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7769","reference_id":"RHSA-2024:7769","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7769"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7791","reference_id":"RHSA-2024:7791","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7791"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7792","reference_id":"RHSA-2024:7792","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7792"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7793","reference_id":"RHSA-2024:7793","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7793"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7794","reference_id":"RHSA-2024:7794","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7794"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7818","reference_id":"RHSA-2024:7818","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7818"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7819","reference_id":"RHSA-2024:7819","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7819"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7820","reference_id":"RHSA-2024:7820","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7820"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7821","reference_id":"RHSA-2024:7821","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7821"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7822","reference_id":"RHSA-2024:7822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7852","reference_id":"RHSA-2024:7852","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7852"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8014","reference_id":"RHSA-2024:8014","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8014"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8038","reference_id":"RHSA-2024:8038","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8038"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8110","reference_id":"RHSA-2024:8110","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8111","reference_id":"RHSA-2024:8111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8229","reference_id":"RHSA-2024:8229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8232","reference_id":"RHSA-2024:8232","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8232"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8314","reference_id":"RHSA-2024:8314","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8314"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8315","reference_id":"RHSA-2024:8315","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8315"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8317","reference_id":"RHSA-2024:8317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8318","reference_id":"RHSA-2024:8318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8329","reference_id":"RHSA-2024:8329","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8329"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8688","reference_id":"RHSA-2024:8688","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8688"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8692","reference_id":"RHSA-2024:8692","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8692"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8697","reference_id":"RHSA-2024:8697","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8697"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9456","reference_id":"RHSA-2024:9456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9472","reference_id":"RHSA-2024:9472","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9472"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9473","reference_id":"RHSA-2024:9473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9485","reference_id":"RHSA-2024:9485","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9485"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9583","reference_id":"RHSA-2024:9583","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9583"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0203","reference_id":"RHSA-2025:0203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0771","reference_id":"RHSA-2025:0771","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0771"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:1190","reference_id":"RHSA-2025:1190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:1190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22182","reference_id":"RHSA-2025:22182","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:22182"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22287","reference_id":"RHSA-2025:22287","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:22287"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23028","reference_id":"RHSA-2025:23028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23059","reference_id":"RHSA-2025:23059","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23059"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23060","reference_id":"RHSA-2025:23060","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23060"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23061","reference_id":"RHSA-2025:23061","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23061"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23064","reference_id":"RHSA-2025:23064","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23064"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23176","reference_id":"RHSA-2025:23176","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23546","reference_id":"RHSA-2025:23546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3501","reference_id":"RHSA-2025:3501","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3501"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3773","reference_id":"RHSA-2025:3773","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3773"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:4240","reference_id":"RHSA-2025:4240","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:4240"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9776","reference_id":"RHSA-2025:9776","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9776"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1730","reference_id":"RHSA-2026:1730","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1730"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1942","reference_id":"RHSA-2026:1942","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1942"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2164","reference_id":"RHSA-2026:2164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2172","reference_id":"RHSA-2026:2172","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2172"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2681","reference_id":"RHSA-2026:2681","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2681"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2754","reference_id":"RHSA-2026:2754","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2754"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2762","reference_id":"RHSA-2026:2762","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2762"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4215","reference_id":"RHSA-2026:4215","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4215"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6568","reference_id":"RHSA-2026:6568","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6568"},{"reference_url":"https://groups.google.com/g/golang-dev/c/S9POB9NCTdk","reference_id":"S9POB9NCTdk","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T14:04:16Z/"}],"url":"https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"},{"reference_url":"https://usn.ubuntu.com/7081-1/","reference_id":"USN-7081-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7081-1/"},{"reference_url":"https://usn.ubuntu.com/7109-1/","reference_id":"USN-7109-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7109-1/"},{"reference_url":"https://usn.ubuntu.com/7111-1/","reference_id":"USN-7111-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7111-1/"}],"fixed_packages":[],"aliases":["CVE-2024-34156"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hfxt-nnd8-dfc8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/74012?format=json","vulnerability_id":"VCID-hs7s-yxfz-mbf1","summary":"go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34155.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34155.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34155","reference_id":"","reference_type":"","scores":[{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23698","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23931","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23977","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23994","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.2395","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23893","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23904","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23875","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23748","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23737","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.24043","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.24081","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23864","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34155"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34155","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34155"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2310527","reference_id":"2310527","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2310527"},{"reference_url":"https://go.dev/cl/611238","reference_id":"611238","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-09T13:55:36Z/"}],"url":"https://go.dev/cl/611238"},{"reference_url":"https://go.dev/issue/69138","reference_id":"69138","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-09T13:55:36Z/"}],"url":"https://go.dev/issue/69138"},{"reference_url":"https://pkg.go.dev/vuln/GO-2024-3105","reference_id":"GO-2024-3105","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-09T13:55:36Z/"}],"url":"https://pkg.go.dev/vuln/GO-2024-3105"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10236","reference_id":"RHSA-2024:10236","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10236"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10883","reference_id":"RHSA-2024:10883","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10883"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10895","reference_id":"RHSA-2024:10895","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10895"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10906","reference_id":"RHSA-2024:10906","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10906"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6908","reference_id":"RHSA-2024:6908","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6908"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6913","reference_id":"RHSA-2024:6913","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6913"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8014","reference_id":"RHSA-2024:8014","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8014"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8038","reference_id":"RHSA-2024:8038","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8038"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8219","reference_id":"RHSA-2024:8219","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8219"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8229","reference_id":"RHSA-2024:8229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8232","reference_id":"RHSA-2024:8232","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8232"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8314","reference_id":"RHSA-2024:8314","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8314"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8315","reference_id":"RHSA-2024:8315","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8315"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8317","reference_id":"RHSA-2024:8317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8318","reference_id":"RHSA-2024:8318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8329","reference_id":"RHSA-2024:8329","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8329"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8337","reference_id":"RHSA-2024:8337","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8337"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8688","reference_id":"RHSA-2024:8688","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8688"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8692","reference_id":"RHSA-2024:8692","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8692"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8697","reference_id":"RHSA-2024:8697","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8697"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8704","reference_id":"RHSA-2024:8704","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8704"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9485","reference_id":"RHSA-2024:9485","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9485"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0771","reference_id":"RHSA-2025:0771","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0771"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9776","reference_id":"RHSA-2025:9776","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9776"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2164","reference_id":"RHSA-2026:2164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2172","reference_id":"RHSA-2026:2172","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2172"},{"reference_url":"https://groups.google.com/g/golang-dev/c/S9POB9NCTdk","reference_id":"S9POB9NCTdk","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-09T13:55:36Z/"}],"url":"https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"},{"reference_url":"https://usn.ubuntu.com/7081-1/","reference_id":"USN-7081-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7081-1/"},{"reference_url":"https://usn.ubuntu.com/7109-1/","reference_id":"USN-7109-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7109-1/"},{"reference_url":"https://usn.ubuntu.com/7111-1/","reference_id":"USN-7111-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7111-1/"}],"fixed_packages":[],"aliases":["CVE-2024-34155"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hs7s-yxfz-mbf1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/12089?format=json","vulnerability_id":"VCID-j9nr-4d4t-j3e1","summary":"Buildah allows arbitrary directory mount\nA vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.","references":[{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8563","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8563"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8675","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8675"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8679","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8679"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8686","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8686"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8690","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8690"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8700","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8700"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8703","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8703"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8707","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8707"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8708","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8708"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8709","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8709"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8846","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8846"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8984","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8984"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8994","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8994"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9051","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9454","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9454"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9459","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9459"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2445","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2449","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2449"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2454","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2454"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2701","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2701"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2710","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3301","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3301"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3573","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3573"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9675.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9675.json"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-9675","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-9675"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-9675","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33476","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33999","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.3403","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33987","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33963","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33986","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33953","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33577","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33557","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34481","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34613","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34586","published_at":"2026-04-02T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-9675"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2317458","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T16:16:25Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2317458"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9675","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9675"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/containers/buildah","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/containers/buildah"},{"reference_url":"https://github.com/containers/buildah/commit/aa67e5d71ee7ec07122a210baa3b13966a9e086c","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/containers/buildah/commit/aa67e5d71ee7ec07122a210baa3b13966a9e086c"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-9675","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-9675"},{"reference_url":"https://pkg.go.dev/vuln/GO-2024-3186","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://pkg.go.dev/vuln/GO-2024-3186"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1084980","reference_id":"1084980","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1084980"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ocp_tools","reference_id":"cpe:/a:redhat:ocp_tools","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ocp_tools"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4","reference_id":"cpe:/a:redhat:openshift:4","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el8","reference_id":"cpe:/a:redhat:openshift:4.12::el8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el9","reference_id":"cpe:/a:redhat:openshift:4.12::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.12::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el8","reference_id":"cpe:/a:redhat:openshift:4.13::el8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9","reference_id":"cpe:/a:redhat:openshift:4.13::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el8","reference_id":"cpe:/a:redhat:openshift:4.14::el8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9","reference_id":"cpe:/a:redhat:openshift:4.14::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el8","reference_id":"cpe:/a:redhat:openshift:4.15::el8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9","reference_id":"cpe:/a:redhat:openshift:4.15::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el8","reference_id":"cpe:/a:redhat:openshift:4.16::el8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9","reference_id":"cpe:/a:redhat:openshift:4.16::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el8","reference_id":"cpe:/a:redhat:openshift:4.17::el8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9","reference_id":"cpe:/a:redhat:openshift:4.17::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.18::el9","reference_id":"cpe:/a:redhat:openshift:4.18::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.18::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:quay:3","reference_id":"cpe:/a:redhat:quay:3","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:quay:3"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"}],"fixed_packages":[],"aliases":["CVE-2024-9675","GHSA-586p-749j-fhwp"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j9nr-4d4t-j3e1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/74007?format=json","vulnerability_id":"VCID-rdqf-wp1t-j7b5","summary":"go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34158.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34158.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34158","reference_id":"","reference_type":"","scores":[{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.36866","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37285","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37296","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37262","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37235","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37281","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37264","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.3721","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.36985","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.36953","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37367","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37393","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37221","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37272","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34158"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34158","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34158"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2310529","reference_id":"2310529","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2310529"},{"reference_url":"https://go.dev/cl/611240","reference_id":"611240","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T13:59:30Z/"}],"url":"https://go.dev/cl/611240"},{"reference_url":"https://go.dev/issue/69141","reference_id":"69141","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T13:59:30Z/"}],"url":"https://go.dev/issue/69141"},{"reference_url":"https://pkg.go.dev/vuln/GO-2024-3107","reference_id":"GO-2024-3107","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T13:59:30Z/"}],"url":"https://pkg.go.dev/vuln/GO-2024-3107"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10906","reference_id":"RHSA-2024:10906","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10906"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6908","reference_id":"RHSA-2024:6908","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6908"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6913","reference_id":"RHSA-2024:6913","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6913"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8014","reference_id":"RHSA-2024:8014","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8014"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8038","reference_id":"RHSA-2024:8038","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8038"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8219","reference_id":"RHSA-2024:8219","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8219"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8229","reference_id":"RHSA-2024:8229","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8232","reference_id":"RHSA-2024:8232","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8232"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8314","reference_id":"RHSA-2024:8314","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8314"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8315","reference_id":"RHSA-2024:8315","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8315"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8317","reference_id":"RHSA-2024:8317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8318","reference_id":"RHSA-2024:8318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8329","reference_id":"RHSA-2024:8329","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8329"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8337","reference_id":"RHSA-2024:8337","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8337"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8688","reference_id":"RHSA-2024:8688","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8688"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8692","reference_id":"RHSA-2024:8692","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8692"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8697","reference_id":"RHSA-2024:8697","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8697"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8704","reference_id":"RHSA-2024:8704","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8704"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0771","reference_id":"RHSA-2025:0771","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0771"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2164","reference_id":"RHSA-2026:2164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2172","reference_id":"RHSA-2026:2172","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2172"},{"reference_url":"https://groups.google.com/g/golang-dev/c/S9POB9NCTdk","reference_id":"S9POB9NCTdk","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T13:59:30Z/"}],"url":"https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"},{"reference_url":"https://usn.ubuntu.com/7081-1/","reference_id":"USN-7081-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7081-1/"},{"reference_url":"https://usn.ubuntu.com/7109-1/","reference_id":"USN-7109-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7109-1/"},{"reference_url":"https://usn.ubuntu.com/7111-1/","reference_id":"USN-7111-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7111-1/"}],"fixed_packages":[],"aliases":["CVE-2024-34158"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rdqf-wp1t-j7b5"}],"fixing_vulnerabilities":[],"risk_score":"3.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/podman@3:4.4.1-21.rhaos4.14%3Farch=el8"}