{"url":"http://public2.vulnerablecode.io/api/packages/92629?format=json","purl":"pkg:rpm/redhat/python3.12@3.12.5-2?arch=el9","type":"rpm","namespace":"redhat","name":"python3.12","version":"3.12.5-2","qualifiers":{"arch":"el9"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/75343?format=json","vulnerability_id":"VCID-2v5u-2z4w-ffgx","summary":"python: incorrect IPv4 and IPv6 private ranges","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4032.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4032.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-4032","reference_id":"","reference_type":"","scores":[{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78384","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78371","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78355","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78348","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78316","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.7832","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78322","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78292","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78297","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78314","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78243","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78274","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78256","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78282","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01127","scoring_system":"epss","scoring_elements":"0.78288","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-4032"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4032","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4032"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/113171","reference_id":"113171","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/issues/113171"},{"reference_url":"https://github.com/python/cpython/pull/113179","reference_id":"113179","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/pull/113179"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2292921","reference_id":"2292921","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2292921"},{"reference_url":"https://github.com/python/cpython/commit/22adf29da8d99933ffed8647d3e0726edd16f7f8","reference_id":"22adf29da8d99933ffed8647d3e0726edd16f7f8","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/22adf29da8d99933ffed8647d3e0726edd16f7f8"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/06/17/3","reference_id":"3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/06/17/3"},{"reference_url":"https://github.com/python/cpython/commit/40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f","reference_id":"40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f"},{"reference_url":"https://github.com/python/cpython/commit/895f7e2ac23eff4743143beef0f0c5ac71ea27d3","reference_id":"895f7e2ac23eff4743143beef0f0c5ac71ea27d3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/895f7e2ac23eff4743143beef0f0c5ac71ea27d3"},{"reference_url":"https://github.com/python/cpython/commit/ba431579efdcbaed7a96f2ac4ea0775879a332fb","reference_id":"ba431579efdcbaed7a96f2ac4ea0775879a332fb","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/ba431579efdcbaed7a96f2ac4ea0775879a332fb"},{"reference_url":"https://github.com/python/cpython/commit/c62c9e518b784fe44432a3f4fc265fb95b651906","reference_id":"c62c9e518b784fe44432a3f4fc265fb95b651906","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/c62c9e518b784fe44432a3f4fc265fb95b651906"},{"reference_url":"https://github.com/python/cpython/commit/f86b17ac511e68192ba71f27e752321a3252cee3","reference_id":"f86b17ac511e68192ba71f27e752321a3252cee3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://github.com/python/cpython/commit/f86b17ac511e68192ba71f27e752321a3252cee3"},{"reference_url":"https://www.iana.org/assignments/iana-ipv4-special-registry/iana-ipv4-special-registry.xhtml","reference_id":"iana-ipv4-special-registry.xhtml","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://www.iana.org/assignments/iana-ipv4-special-registry/iana-ipv4-special-registry.xhtml"},{"reference_url":"https://www.iana.org/assignments/iana-ipv6-special-registry/iana-ipv6-special-registry.xhtml","reference_id":"iana-ipv6-special-registry.xhtml","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://www.iana.org/assignments/iana-ipv6-special-registry/iana-ipv6-special-registry.xhtml"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA/","reference_id":"NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240726-0004/","reference_id":"ntap-20240726-0004","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240726-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4766","reference_id":"RHSA-2024:4766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4779","reference_id":"RHSA-2024:4779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5962","reference_id":"RHSA-2024:5962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6030","reference_id":"RHSA-2024:6030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6961","reference_id":"RHSA-2024:6961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6962","reference_id":"RHSA-2024:6962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6975","reference_id":"RHSA-2024:6975","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6975"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7417","reference_id":"RHSA-2024:7417","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7417"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9190","reference_id":"RHSA-2024:9190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9190"},{"reference_url":"https://usn.ubuntu.com/6928-1/","reference_id":"USN-6928-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6928-1/"},{"reference_url":"https://usn.ubuntu.com/6941-1/","reference_id":"USN-6941-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6941-1/"},{"reference_url":"https://usn.ubuntu.com/7348-1/","reference_id":"USN-7348-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-1/"}],"fixed_packages":[],"aliases":["CVE-2024-4032"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2v5u-2z4w-ffgx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31513?format=json","vulnerability_id":"VCID-dnv8-yrd6-c7cv","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8088.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8088.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8088","reference_id":"","reference_type":"","scores":[{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45644","published_at":"2026-05-05T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.4575","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45809","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45799","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45924","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.4593","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45876","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45869","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45877","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45881","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45825","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45875","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.45853","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0023","scoring_system":"epss","scoring_elements":"0.459","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8088"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8088","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8088"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/0aa1ee22ab6e204e9d3d0e9dd63ea648ed691ef1","reference_id":"0aa1ee22ab6e204e9d3d0e9dd63ea648ed691ef1","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/0aa1ee22ab6e204e9d3d0e9dd63ea648ed691ef1"},{"reference_url":"https://github.com/python/cpython/issues/122905","reference_id":"122905","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/issues/122905"},{"reference_url":"https://github.com/python/cpython/pull/122906","reference_id":"122906","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/pull/122906"},{"reference_url":"https://github.com/python/cpython/issues/123270","reference_id":"123270","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/issues/123270"},{"reference_url":"https://github.com/python/cpython/commit/2231286d78d328c2f575e0b05b16fe447d1656d6","reference_id":"2231286d78d328c2f575e0b05b16fe447d1656d6","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/2231286d78d328c2f575e0b05b16fe447d1656d6"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2307370","reference_id":"2307370","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2307370"},{"reference_url":"https://github.com/python/cpython/commit/795f2597a4be988e2bb19b69ff9958e981cb894e","reference_id":"795f2597a4be988e2bb19b69ff9958e981cb894e","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/795f2597a4be988e2bb19b69ff9958e981cb894e"},{"reference_url":"https://github.com/python/cpython/commit/7bc367e464ce50b956dd232c1dfa1cad4e7fb814","reference_id":"7bc367e464ce50b956dd232c1dfa1cad4e7fb814","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/7bc367e464ce50b956dd232c1dfa1cad4e7fb814"},{"reference_url":"https://github.com/python/cpython/commit/7e8883a3f04d308302361aeffc73e0e9837f19d4","reference_id":"7e8883a3f04d308302361aeffc73e0e9837f19d4","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/7e8883a3f04d308302361aeffc73e0e9837f19d4"},{"reference_url":"https://github.com/python/cpython/commit/8c7348939d8a3ecd79d630075f6be1b0c5b41f64","reference_id":"8c7348939d8a3ecd79d630075f6be1b0c5b41f64","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/8c7348939d8a3ecd79d630075f6be1b0c5b41f64"},{"reference_url":"https://github.com/python/cpython/commit/95b073bddefa6243effa08e131e297c0383e7f6a","reference_id":"95b073bddefa6243effa08e131e297c0383e7f6a","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/95b073bddefa6243effa08e131e297c0383e7f6a"},{"reference_url":"https://github.com/python/cpython/commit/962055268ed4f2ca1d717bfc8b6385de50a23ab7","reference_id":"962055268ed4f2ca1d717bfc8b6385de50a23ab7","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/962055268ed4f2ca1d717bfc8b6385de50a23ab7"},{"reference_url":"https://github.com/python/cpython/commit/9cd03263100ddb1657826cc4a71470786cab3932","reference_id":"9cd03263100ddb1657826cc4a71470786cab3932","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/9cd03263100ddb1657826cc4a71470786cab3932"},{"reference_url":"https://github.com/python/cpython/commit/dcc5182f27c1500006a1ef78e10613bb45788dea","reference_id":"dcc5182f27c1500006a1ef78e10613bb45788dea","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/dcc5182f27c1500006a1ef78e10613bb45788dea"},{"reference_url":"https://github.com/python/cpython/commit/e0264a61119d551658d9445af38323ba94fc16db","reference_id":"e0264a61119d551658d9445af38323ba94fc16db","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/e0264a61119d551658d9445af38323ba94fc16db"},{"reference_url":"https://github.com/python/cpython/commit/fc0b8259e693caa8400fa8b6ac1e494e47ea7798","reference_id":"fc0b8259e693caa8400fa8b6ac1e494e47ea7798","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://github.com/python/cpython/commit/fc0b8259e693caa8400fa8b6ac1e494e47ea7798"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/GNFCKVI4TCATKQLALJ5SN4L4CSPSMILU/","reference_id":"GNFCKVI4TCATKQLALJ5SN4L4CSPSMILU","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/GNFCKVI4TCATKQLALJ5SN4L4CSPSMILU/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5962","reference_id":"RHSA-2024:5962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6163","reference_id":"RHSA-2024:6163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6961","reference_id":"RHSA-2024:6961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6962","reference_id":"RHSA-2024:6962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9190","reference_id":"RHSA-2024:9190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9192","reference_id":"RHSA-2024:9192","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9192"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9371","reference_id":"RHSA-2024:9371","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9371"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"}],"fixed_packages":[],"aliases":["CVE-2024-8088"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dnv8-yrd6-c7cv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42644?format=json","vulnerability_id":"VCID-js5p-py72-2kga","summary":"Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0450","reference_id":"","reference_type":"","scores":[{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35454","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35411","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35409","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35384","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35338","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35429","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.34861","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.34983","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35072","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35093","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35328","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.3538","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35392","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35352","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35374","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0450"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133","reference_id":"1070133","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133"},{"reference_url":"https://github.com/python/cpython/issues/109858","reference_id":"109858","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/issues/109858"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276525","reference_id":"2276525","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276525"},{"reference_url":"https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85","reference_id":"30fe5d853b56138dbec62432d370a1f99409fc85","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/03/20/5","reference_id":"5","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/03/20/5"},{"reference_url":"https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba","reference_id":"66363b9a7b9fe7c99eba3a185b74c5fdbf842eba","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba"},{"reference_url":"https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675","reference_id":"70497218351ba44bffc8b571201ecb5652d84675","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675"},{"reference_url":"https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51","reference_id":"a2c59992e9e8d35baba9695eb186ad6c6ff85c51","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51"},{"reference_url":"https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549","reference_id":"a956e510f6336d5ae111ba429a61c3ade30a7549","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549"},{"reference_url":"https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183","reference_id":"d05bac0b74153beb541b88b4fca33bf053990183","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183"},{"reference_url":"https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b","reference_id":"fa181fcf2156f703347b03a3b1966ce47be8ab3b","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b"},{"reference_url":"https://security.gentoo.org/glsa/202405-01","reference_id":"GLSA-202405-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-01"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html","reference_id":"msg00024.html","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html","reference_id":"msg00025.html","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3347","reference_id":"RHSA-2024:3347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3391","reference_id":"RHSA-2024:3391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3466","reference_id":"RHSA-2024:3466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3466"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4058","reference_id":"RHSA-2024:4058","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4058"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4078","reference_id":"RHSA-2024:4078","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4078"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4243","reference_id":"RHSA-2024:4243","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4243"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4406","reference_id":"RHSA-2024:4406","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4406"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9190","reference_id":"RHSA-2024:9190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9192","reference_id":"RHSA-2024:9192","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9192"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/","reference_id":"T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/","reference_id":"U5VHWS52HGD743C47UMCSAK2A773M2YE","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7212-1/","reference_id":"USN-7212-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7212-1/"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/","reference_id":"XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/"},{"reference_url":"https://www.bamsoftware.com/hacks/zipbomb/","reference_id":"zipbomb","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://www.bamsoftware.com/hacks/zipbomb/"}],"fixed_packages":[],"aliases":["CVE-2024-0450"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-js5p-py72-2kga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/75344?format=json","vulnerability_id":"VCID-qwhz-912b-8kh5","summary":"cpython: python: Memory race condition in ssl.SSLContext certificate store methods","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0397.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0397.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0397","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59638","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59633","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59658","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59628","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59679","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59692","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59712","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59695","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59677","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5971","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59717","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59701","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5967","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5969","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59675","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0397"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0397","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0397"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/01c37f1d0714f5822d34063ca7180b595abf589d","reference_id":"01c37f1d0714f5822d34063ca7180b595abf589d","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/01c37f1d0714f5822d34063ca7180b595abf589d"},{"reference_url":"https://github.com/python/cpython/issues/114572","reference_id":"114572","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/issues/114572"},{"reference_url":"https://github.com/python/cpython/pull/114573","reference_id":"114573","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/pull/114573"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/06/17/2","reference_id":"2","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/06/17/2"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2301891","reference_id":"2301891","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2301891"},{"reference_url":"https://github.com/python/cpython/commit/29c97287d205bf2f410f4895ebce3f43b5160524","reference_id":"29c97287d205bf2f410f4895ebce3f43b5160524","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/29c97287d205bf2f410f4895ebce3f43b5160524"},{"reference_url":"https://github.com/python/cpython/commit/37324b421b72b7bc9934e27aba85d48d4773002e","reference_id":"37324b421b72b7bc9934e27aba85d48d4773002e","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/37324b421b72b7bc9934e27aba85d48d4773002e"},{"reference_url":"https://github.com/python/cpython/commit/542f3272f56f31ed04e74c40635a913fbc12d286","reference_id":"542f3272f56f31ed04e74c40635a913fbc12d286","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/542f3272f56f31ed04e74c40635a913fbc12d286"},{"reference_url":"https://github.com/python/cpython/commit/b228655c227b2ca298a8ffac44d14ce3d22f6faa","reference_id":"b228655c227b2ca298a8ffac44d14ce3d22f6faa","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/b228655c227b2ca298a8ffac44d14ce3d22f6faa"},{"reference_url":"https://github.com/python/cpython/commit/bce693111bff906ccf9281c22371331aaff766ab","reference_id":"bce693111bff906ccf9281c22371331aaff766ab","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://github.com/python/cpython/commit/bce693111bff906ccf9281c22371331aaff766ab"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP/","reference_id":"BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10983","reference_id":"RHSA-2024:10983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9190","reference_id":"RHSA-2024:9190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9192","reference_id":"RHSA-2024:9192","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9192"},{"reference_url":"https://usn.ubuntu.com/6928-1/","reference_id":"USN-6928-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6928-1/"}],"fixed_packages":[],"aliases":["CVE-2024-0397"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qwhz-912b-8kh5"}],"fixing_vulnerabilities":[],"risk_score":"3.9","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.5-2%3Farch=el9"}