Package Instance

reference_id

AVG-1022

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-1023

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3616

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2019-9516
reference_id	CVE-2019-9516
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2019-9516

reference_url	https://access.redhat.com/errata/RHSA-2019:2745
reference_id	RHSA-2019:2745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2745

reference_url	https://access.redhat.com/errata/RHSA-2019:2746
reference_id	RHSA-2019:2746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2746

reference_url	https://access.redhat.com/errata/RHSA-2019:2775
reference_id	RHSA-2019:2775
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2775

reference_url	https://access.redhat.com/errata/RHSA-2019:2799
reference_id	RHSA-2019:2799
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2799

reference_url	https://access.redhat.com/errata/RHSA-2019:2925
reference_id	RHSA-2019:2925
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2925

reference_url	https://access.redhat.com/errata/RHSA-2019:2939
reference_id	RHSA-2019:2939
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2939

reference_url	https://access.redhat.com/errata/RHSA-2019:2946
reference_id	RHSA-2019:2946
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2946

reference_url	https://access.redhat.com/errata/RHSA-2019:2950
reference_id	RHSA-2019:2950
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2950

reference_url	https://access.redhat.com/errata/RHSA-2019:2955
reference_id	RHSA-2019:2955
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2955

reference_url	https://access.redhat.com/errata/RHSA-2019:2966
reference_id	RHSA-2019:2966
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2966

reference_url	https://access.redhat.com/errata/RHSA-2019:3932
reference_id	RHSA-2019:3932
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3932

reference_url	https://access.redhat.com/errata/RHSA-2019:3933
reference_id	RHSA-2019:3933
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3933

reference_url	https://access.redhat.com/errata/RHSA-2019:3935
reference_id	RHSA-2019:3935
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3935

reference_url	https://access.redhat.com/errata/RHSA-2020:0922
reference_id	RHSA-2020:0922
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:0922

reference_url	https://access.redhat.com/errata/RHSA-2020:0983
reference_id	RHSA-2020:0983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:0983

reference_url	https://access.redhat.com/errata/RHSA-2020:1445
reference_id	RHSA-2020:1445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1445

reference_url	https://usn.ubuntu.com/4099-1/
reference_id	USN-4099-1
reference_type
scores
url	https://usn.ubuntu.com/4099-1/

fixed_packages

url	pkg:deb/debian/nginx@1.14.2-3?distro=trixie
purl	pkg:deb/debian/nginx@1.14.2-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.14.2-3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2019-9516

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2ee4-3t8r-7fgz

url VCID-2g7n-yz48-tyey

vulnerability_id VCID-2g7n-yz48-tyey

summary security update

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3616.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3616.json

reference_url

reference_id

reference_type

scores

value	0.02435
scoring_system	epss
scoring_elements	0.85487
published_at	2026-06-11T12:55:00Z

value	0.02435
scoring_system	epss
scoring_elements	0.85539
published_at	2026-06-12T12:55:00Z

value	0.02435
scoring_system	epss
scoring_elements	0.85548
published_at	2026-06-13T12:55:00Z

value	0.02435
scoring_system	epss
scoring_elements	0.85541
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3616

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3616

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2014/000147.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2014/000147.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1142573
reference_id	1142573
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1142573

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=761940
reference_id	761940
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=761940

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2014-3616
reference_id	CVE-2014-3616
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2014-3616

reference_url	https://security.gentoo.org/glsa/201502-06
reference_id	GLSA-201502-06
reference_type
scores
url	https://security.gentoo.org/glsa/201502-06

reference_url	https://usn.ubuntu.com/2351-1/
reference_id	USN-2351-1
reference_type
scores
url	https://usn.ubuntu.com/2351-1/

fixed_packages

url	pkg:deb/debian/nginx@1.6.2-1?distro=trixie
purl	pkg:deb/debian/nginx@1.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.6.2-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2014-3616

risk_score 1.8

exploitability 0.5

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2g7n-yz48-tyey

url VCID-3qaa-xvqp-a3c8

vulnerability_id VCID-3qaa-xvqp-a3c8

summary

A buffer underflow vulnerability in the request URI processing of nginx
    might enable remote attackers to execute arbitrary code or cause a Denial
    of Service.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2629.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2629.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2629

reference_id

reference_type

scores

value	0.781
scoring_system	epss
scoring_elements	0.9904
published_at	2026-06-11T12:55:00Z

value	0.781
scoring_system	epss
scoring_elements	0.99044
published_at	2026-06-12T12:55:00Z

value	0.781
scoring_system	epss
scoring_elements	0.99045
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2629

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2629
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2629

reference_url	https://nginx.org/download/patch.180065.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.180065.txt

reference_url	https://nginx.org/download/patch.180065.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.180065.txt.asc

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=523105
reference_id	523105
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=523105

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/14830.py
reference_id	CVE-2009-2629
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/14830.py

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2009-2629
reference_id	CVE-2009-2629
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2009-2629

reference_url	https://security.gentoo.org/glsa/200909-18
reference_id	GLSA-200909-18
reference_type
scores
url	https://security.gentoo.org/glsa/200909-18

fixed_packages

url	pkg:deb/debian/nginx@0.7.61-3?distro=trixie
purl	pkg:deb/debian/nginx@0.7.61-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0.7.61-3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2009-2629, VU#180065

risk_score 1.4

exploitability 2.0

weighted_severity 0.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3qaa-xvqp-a3c8

url VCID-3u6m-s2vz-4kfu

vulnerability_id VCID-3u6m-s2vz-4kfu

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7347.json

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7347.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-7347

reference_id

reference_type

scores

value	0.00197
scoring_system	epss
scoring_elements	0.41688
published_at	2026-06-14T12:55:00Z

value	0.00197
scoring_system	epss
scoring_elements	0.41698
published_at	2026-06-13T12:55:00Z

value	0.00197
scoring_system	epss
scoring_elements	0.4168
published_at	2026-06-12T12:55:00Z

value	0.00202
scoring_system	epss
scoring_elements	0.4227
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-7347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7347

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2024/UUOCLLONPR6244YQYU65PO5LB7JDYCWM.html

reference_id

reference_type

scores

value	low
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2024/UUOCLLONPR6244YQYU65PO5LB7JDYCWM.html

reference_url	https://nginx.org/download/patch.2024.mp4.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2024.mp4.txt

reference_url	https://nginx.org/download/patch.2024.mp4.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2024.mp4.txt.asc

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078971
reference_id	1078971
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078971

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2304966
reference_id	2304966
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2304966

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-7347
reference_id	CVE-2024-7347
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-7347

reference_url	https://security.gentoo.org/glsa/202409-32
reference_id	GLSA-202409-32
reference_type
scores
url	https://security.gentoo.org/glsa/202409-32

reference_url

https://my.f5.com/manage/s/article/K000140529

reference_id

K000140529

reference_type

scores

value	4.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

value	5.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-14T15:27:31Z/

url

https://my.f5.com/manage/s/article/K000140529

reference_url	https://access.redhat.com/errata/RHSA-2025:3261
reference_id	RHSA-2025:3261
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3261

reference_url	https://access.redhat.com/errata/RHSA-2025:3262
reference_id	RHSA-2025:3262
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3262

reference_url	https://access.redhat.com/errata/RHSA-2025:7402
reference_id	RHSA-2025:7402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7402

reference_url	https://access.redhat.com/errata/RHSA-2025:7542
reference_id	RHSA-2025:7542
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7542

reference_url	https://access.redhat.com/errata/RHSA-2025:7546
reference_id	RHSA-2025:7546
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7546

reference_url	https://access.redhat.com/errata/RHSA-2025:7548
reference_id	RHSA-2025:7548
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7548

reference_url	https://access.redhat.com/errata/RHSA-2025:7549
reference_id	RHSA-2025:7549
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7549

reference_url	https://access.redhat.com/errata/RHSA-2025:7619
reference_id	RHSA-2025:7619
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7619

reference_url	https://usn.ubuntu.com/7014-1/
reference_id	USN-7014-1
reference_type
scores
url	https://usn.ubuntu.com/7014-1/

reference_url	https://usn.ubuntu.com/7014-2/
reference_id	USN-7014-2
reference_type
scores
url	https://usn.ubuntu.com/7014-2/

reference_url	https://usn.ubuntu.com/7014-3/
reference_id	USN-7014-3
reference_type
scores
url	https://usn.ubuntu.com/7014-3/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u2%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
purl	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.0-2%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2024-7347

risk_score 2.1

exploitability 0.5

weighted_severity 4.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3u6m-s2vz-4kfu

url VCID-4bst-a2we-ffdm

vulnerability_id VCID-4bst-a2we-ffdm

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34161.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-34161.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-34161

reference_id

reference_type

scores

value	0.00719
scoring_system	epss
scoring_elements	0.73013
published_at	2026-06-14T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.73015
published_at	2026-06-13T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.73
published_at	2026-06-12T12:55:00Z

value	0.00739
scoring_system	epss
scoring_elements	0.73361
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-34161

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2283926
reference_id	2283926
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2283926

reference_url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:37:24Z/

url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-34161
reference_id	CVE-2024-34161
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-34161

reference_url

https://my.f5.com/manage/s/article/K000139627

reference_id

K000139627

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:37:24Z/

url

https://my.f5.com/manage/s/article/K000139627

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD/

reference_id

MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:37:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7RPLWC35WHEUFCGKNFG62ESNID25TEZ/

reference_id

R7RPLWC35WHEUFCGKNFG62ESNID25TEZ

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:37:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7RPLWC35WHEUFCGKNFG62ESNID25TEZ/

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
purl	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.0-2%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2024-34161

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4bst-a2we-ffdm

url VCID-4hpb-cxsx-93h5

vulnerability_id VCID-4hpb-cxsx-93h5

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-35200.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-35200.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-35200

reference_id

reference_type

scores

value	0.00433
scoring_system	epss
scoring_elements	0.6336
published_at	2026-06-14T12:55:00Z

value	0.00433
scoring_system	epss
scoring_elements	0.63363
published_at	2026-06-13T12:55:00Z

value	0.00433
scoring_system	epss
scoring_elements	0.63352
published_at	2026-06-12T12:55:00Z

value	0.00446
scoring_system	epss
scoring_elements	0.63877
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-35200

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2283919
reference_id	2283919
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2283919

reference_url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:35:12Z/

url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-35200
reference_id	CVE-2024-35200
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-35200

reference_url

https://my.f5.com/manage/s/article/K000139612

reference_id

K000139612

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:35:12Z/

url

https://my.f5.com/manage/s/article/K000139612

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD/

reference_id

MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:35:12Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7RPLWC35WHEUFCGKNFG62ESNID25TEZ/

reference_id

R7RPLWC35WHEUFCGKNFG62ESNID25TEZ

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:35:12Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7RPLWC35WHEUFCGKNFG62ESNID25TEZ/

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
purl	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.0-2%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2024-35200

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4hpb-cxsx-93h5

url VCID-4pgh-85re-xkby

vulnerability_id VCID-4pgh-85re-xkby

summary

A buffer overflow vulnerability in nginx could result in the
    execution of arbitrary code.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-2089

reference_id

reference_type

scores

value	0.05317
scoring_system	epss
scoring_elements	0.90255
published_at	2026-06-11T12:55:00Z

value	0.05317
scoring_system	epss
scoring_elements	0.90285
published_at	2026-06-12T12:55:00Z

value	0.05317
scoring_system	epss
scoring_elements	0.90293
published_at	2026-06-13T12:55:00Z

value	0.05317
scoring_system	epss
scoring_elements	0.90291
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-2089

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2089
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2089

reference_url	https://mailman.nginx.org/pipermail/nginx-announce/2012/000080.html
reference_id
reference_type
scores
url	https://mailman.nginx.org/pipermail/nginx-announce/2012/000080.html

reference_url	https://nginx.org/download/patch.2012.mp4.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2012.mp4.txt

reference_url	https://nginx.org/download/patch.2012.mp4.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2012.mp4.txt.asc

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2012-2089
reference_id	CVE-2012-2089
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2012-2089

reference_url	https://security.gentoo.org/glsa/201206-07
reference_id	GLSA-201206-07
reference_type
scores
url	https://security.gentoo.org/glsa/201206-07

fixed_packages

url	pkg:deb/debian/nginx@1.1.19-1?distro=trixie
purl	pkg:deb/debian/nginx@1.1.19-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.1.19-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2012-2089

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4pgh-85re-xkby

url VCID-4wp1-z5d1-5qbf

vulnerability_id VCID-4wp1-z5d1-5qbf

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24990.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24990.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-24990

reference_id

reference_type

scores

value	0.00314
scoring_system	epss
scoring_elements	0.55069
published_at	2026-06-14T12:55:00Z

value	0.00314
scoring_system	epss
scoring_elements	0.54945
published_at	2026-06-11T12:55:00Z

value	0.00314
scoring_system	epss
scoring_elements	0.55066
published_at	2026-06-12T12:55:00Z

value	0.00314
scoring_system	epss
scoring_elements	0.55082
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-24990

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://mailman.nginx.org/pipermail/nginx-announce/2024/NW6MNW34VZ6HDIHH5YFBIJYZJN7FGNAV.html
reference_id
reference_type
scores
url	https://mailman.nginx.org/pipermail/nginx-announce/2024/NW6MNW34VZ6HDIHH5YFBIJYZJN7FGNAV.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2264298
reference_id	2264298
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2264298

reference_url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T15:18:51Z/

url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-24990
reference_id	CVE-2024-24990
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-24990

reference_url	https://security.gentoo.org/glsa/202409-32
reference_id	GLSA-202409-32
reference_type
scores
url	https://security.gentoo.org/glsa/202409-32

reference_url

https://my.f5.com/manage/s/article/K000138445

reference_id

K000138445

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T15:18:51Z/

url

https://my.f5.com/manage/s/article/K000138445

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.0-1?distro=trixie
purl	pkg:deb/debian/nginx@1.26.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.0-1%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2024-24990

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4wp1-z5d1-5qbf

url VCID-53mf-mfne-j3e9

vulnerability_id VCID-53mf-mfne-j3e9

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41741.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41741.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-41741

reference_id

reference_type

scores

value	0.00828
scoring_system	epss
scoring_elements	0.74947
published_at	2026-06-11T12:55:00Z

value	0.00828
scoring_system	epss
scoring_elements	0.75027
published_at	2026-06-14T12:55:00Z

value	0.00828
scoring_system	epss
scoring_elements	0.7503
published_at	2026-06-13T12:55:00Z

value	0.00828
scoring_system	epss
scoring_elements	0.75018
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-41741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41742

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2022/RBRRON6PYBJJM2XIAPQBFBVLR4Q6IHRA.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2022/RBRRON6PYBJJM2XIAPQBFBVLR4Q6IHRA.html

reference_url	https://nginx.org/download/patch.2022.mp4.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2022.mp4.txt

reference_url	https://nginx.org/download/patch.2022.mp4.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2022.mp4.txt.asc

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2141495
reference_id	2141495
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2141495

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPRVYA4FS34VWB4FEFYNAD7Z2LFCJVEI/

reference_id

BPRVYA4FS34VWB4FEFYNAD7Z2LFCJVEI

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:12:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPRVYA4FS34VWB4FEFYNAD7Z2LFCJVEI/

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-41741
reference_id	CVE-2022-41741
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-41741

reference_url

reference_id

dsa-5281

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:12:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FD6M3PVVKO35WLAA7GLDBS6TEQ26SM64/

reference_url

reference_id

FD6M3PVVKO35WLAA7GLDBS6TEQ26SM64

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:12:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FD6M3PVVKO35WLAA7GLDBS6TEQ26SM64/

reference_url

https://support.f5.com/csp/article/K81926432

reference_id

K81926432

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:12:04Z/

url

https://support.f5.com/csp/article/K81926432

reference_url

https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html

reference_id

msg00031.html

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:12:04Z/

url

https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html

reference_url

https://security.netapp.com/advisory/ntap-20230120-0005/

reference_id

ntap-20230120-0005

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:12:04Z/

url

https://security.netapp.com/advisory/ntap-20230120-0005/

reference_url	https://access.redhat.com/errata/RHSA-2025:7402
reference_id	RHSA-2025:7402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7402

reference_url	https://access.redhat.com/errata/RHSA-2025:7546
reference_id	RHSA-2025:7546
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7546

reference_url	https://access.redhat.com/errata/RHSA-2025:7619
reference_id	RHSA-2025:7619
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7619

reference_url	https://usn.ubuntu.com/5722-1/
reference_id	USN-5722-1
reference_type
scores
url	https://usn.ubuntu.com/5722-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WBORRVG7VVXYOAIAD64ZHES2U2VIUKFQ/

reference_id

WBORRVG7VVXYOAIAD64ZHES2U2VIUKFQ

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:12:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WBORRVG7VVXYOAIAD64ZHES2U2VIUKFQ/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-1?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2022-41741

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-53mf-mfne-j3e9

url VCID-5b4s-t6tc-such

vulnerability_id VCID-5b4s-t6tc-such

summary An issue in OpenResty lua-nginx-module v.0.10.26 and before allows a remote attacker to conduct HTTP request smuggling via a crafted HEAD request.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-33452.json

reference_id

reference_type

scores

value	7.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-33452.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-33452

reference_id

reference_type

scores

value	0.00824
scoring_system	epss
scoring_elements	0.74976
published_at	2026-06-14T12:55:00Z

value	0.00824
scoring_system	epss
scoring_elements	0.74895
published_at	2026-06-11T12:55:00Z

value	0.00824
scoring_system	epss
scoring_elements	0.74966
published_at	2026-06-12T12:55:00Z

value	0.00824
scoring_system	epss
scoring_elements	0.7498
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-33452

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33452
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33452

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2361691
reference_id	2361691
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2361691

reference_url

https://portswigger.net/research/http-desync-attacks-request-smuggling-reborn

reference_id

http-desync-attacks-request-smuggling-reborn

reference_type

scores

value	7.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T19:26:16Z/

url

https://portswigger.net/research/http-desync-attacks-request-smuggling-reborn

reference_url

https://www.benasin.space/2025/03/18/OpenResty-lua-nginx-module-v0-10-26-HTTP-Request-Smuggling-in-HEAD-requests/

reference_id

OpenResty-lua-nginx-module-v0-10-26-HTTP-Request-Smuggling-in-HEAD-requests

reference_type

scores

value	7.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-22T19:26:16Z/

url

https://www.benasin.space/2025/03/18/OpenResty-lua-nginx-module-v0-10-26-HTTP-Request-Smuggling-in-HEAD-requests/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u5?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.0-3?distro=trixie
purl	pkg:deb/debian/nginx@1.22.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.0-3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2024-33452

risk_score 3.5

exploitability 0.5

weighted_severity 6.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5b4s-t6tc-such

url VCID-5eg1-3k2c-pubt

vulnerability_id VCID-5eg1-3k2c-pubt

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42934.json

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42934.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-42934

reference_id

reference_type

scores

value	0.00041
scoring_system	epss
scoring_elements	0.12774
published_at	2026-06-13T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.13217
published_at	2026-06-14T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.1393
published_at	2026-06-11T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.14047
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-42934

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42934
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42934

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2477066
reference_id	2477066
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2477066

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-42934
reference_id	CVE-2026-42934
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-42934

reference_url

https://my.f5.com/manage/s/article/K000161028

reference_id

K000161028

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:55:18Z/

url

https://my.f5.com/manage/s/article/K000161028

reference_url	https://usn.ubuntu.com/8354-1/
reference_id	USN-8354-1
reference_type
scores
url	https://usn.ubuntu.com/8354-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u7%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u5?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u5%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.0-4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-42934

risk_score 2.1

exploitability 0.5

weighted_severity 4.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5eg1-3k2c-pubt

url VCID-5n3x-25u4-4ya3

vulnerability_id VCID-5n3x-25u4-4ya3

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16844.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16844.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16844

reference_id

reference_type

scores

value	0.10883
scoring_system	epss
scoring_elements	0.93551
published_at	2026-06-11T12:55:00Z

value	0.10883
scoring_system	epss
scoring_elements	0.93572
published_at	2026-06-12T12:55:00Z

value	0.10883
scoring_system	epss
scoring_elements	0.93576
published_at	2026-06-13T12:55:00Z

value	0.10883
scoring_system	epss
scoring_elements	0.93577
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16844

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16843
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16843

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16844
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16844

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16845
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16845

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html

reference_id

reference_type

scores

value	low
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1644510
reference_id	1644510
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1644510

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913090
reference_id	913090
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913090

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2018-16844
reference_id	CVE-2018-16844
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2018-16844

reference_url	https://access.redhat.com/errata/RHSA-2018:3680
reference_id	RHSA-2018:3680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3680

reference_url	https://access.redhat.com/errata/RHSA-2018:3681
reference_id	RHSA-2018:3681
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3681

reference_url	https://usn.ubuntu.com/3812-1/
reference_id	USN-3812-1
reference_type
scores
url	https://usn.ubuntu.com/3812-1/

fixed_packages

url	pkg:deb/debian/nginx@1.14.1-1?distro=trixie
purl	pkg:deb/debian/nginx@1.14.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.14.1-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2018-16844

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5n3x-25u4-4ya3

url VCID-5p42-tpgu-ybgb

vulnerability_id VCID-5p42-tpgu-ybgb

summary security update

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-11724

reference_id

reference_type

scores

value	0.02474
scoring_system	epss
scoring_elements	0.85599
published_at	2026-06-11T12:55:00Z

value	0.02474
scoring_system	epss
scoring_elements	0.85651
published_at	2026-06-12T12:55:00Z

value	0.02474
scoring_system	epss
scoring_elements	0.8566
published_at	2026-06-13T12:55:00Z

value	0.02474
scoring_system	epss
scoring_elements	0.85653
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-11724

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11724
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11724

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=964950
reference_id	964950
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=964950

reference_url	https://usn.ubuntu.com/5371-1/
reference_id	USN-5371-1
reference_type
scores
url	https://usn.ubuntu.com/5371-1/

reference_url	https://usn.ubuntu.com/5371-3/
reference_id	USN-5371-3
reference_type
scores
url	https://usn.ubuntu.com/5371-3/

fixed_packages

url	pkg:deb/debian/nginx@1.18.0-5?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-5%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2020-11724

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5p42-tpgu-ybgb

url VCID-5ry9-xeau-gfgb

vulnerability_id VCID-5ry9-xeau-gfgb

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27654.json

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27654.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-27654

reference_id

reference_type

scores

value	0.00021
scoring_system	epss
scoring_elements	0.06085
published_at	2026-06-14T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.06082
published_at	2026-06-11T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.06103
published_at	2026-06-12T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.06096
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-27654

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27654
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27654

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2450776
reference_id	2450776
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2450776

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-27654
reference_id	CVE-2026-27654
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-27654

reference_url

https://my.f5.com/manage/s/article/K000160382

reference_id

K000160382

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-24T15:14:50Z/

url

https://my.f5.com/manage/s/article/K000160382

reference_url	https://access.redhat.com/errata/RHSA-2026:10065
reference_id	RHSA-2026:10065
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:10065

reference_url	https://access.redhat.com/errata/RHSA-2026:13634
reference_id	RHSA-2026:13634
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13634

reference_url	https://access.redhat.com/errata/RHSA-2026:13680
reference_id	RHSA-2026:13680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13680

reference_url	https://access.redhat.com/errata/RHSA-2026:13839
reference_id	RHSA-2026:13839
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13839

reference_url	https://access.redhat.com/errata/RHSA-2026:14836
reference_id	RHSA-2026:14836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:14836

reference_url	https://access.redhat.com/errata/RHSA-2026:15942
reference_id	RHSA-2026:15942
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15942

reference_url	https://access.redhat.com/errata/RHSA-2026:15943
reference_id	RHSA-2026:15943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15943

reference_url	https://access.redhat.com/errata/RHSA-2026:15945
reference_id	RHSA-2026:15945
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15945

reference_url	https://access.redhat.com/errata/RHSA-2026:15966
reference_id	RHSA-2026:15966
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15966

reference_url	https://access.redhat.com/errata/RHSA-2026:6906
reference_id	RHSA-2026:6906
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6906

reference_url	https://access.redhat.com/errata/RHSA-2026:6907
reference_id	RHSA-2026:6907
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6907

reference_url	https://access.redhat.com/errata/RHSA-2026:6923
reference_id	RHSA-2026:6923
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6923

reference_url	https://access.redhat.com/errata/RHSA-2026:7002
reference_id	RHSA-2026:7002
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7002

reference_url	https://access.redhat.com/errata/RHSA-2026:7343
reference_id	RHSA-2026:7343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7343

reference_url	https://access.redhat.com/errata/RHSA-2026:8346
reference_id	RHSA-2026:8346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8346

reference_url	https://usn.ubuntu.com/8210-1/
reference_id	USN-8210-1
reference_type
scores
url	https://usn.ubuntu.com/8210-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
purl	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.28.3-1%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-27654

risk_score 3.7

exploitability 0.5

weighted_severity 7.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5ry9-xeau-gfgb

url VCID-5tfv-vjkt-8kfx

vulnerability_id VCID-5tfv-vjkt-8kfx

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40460.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40460.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-40460

reference_id

reference_type

scores

value	0.00017
scoring_system	epss
scoring_elements	0.04436
published_at	2026-06-11T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.04422
published_at	2026-06-13T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.04437
published_at	2026-06-12T12:55:00Z

value	0.00018
scoring_system	epss
scoring_elements	0.04719
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-40460

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2477113
reference_id	2477113
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2477113

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-40460
reference_id	CVE-2026-40460
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-40460

reference_url

https://my.f5.com/manage/s/article/K000161068

reference_id

K000161068

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:54:59Z/

url

https://my.f5.com/manage/s/article/K000161068

reference_url	https://access.redhat.com/errata/RHSA-2026:20351
reference_id	RHSA-2026:20351
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:20351

reference_url	https://usn.ubuntu.com/8354-1/
reference_id	USN-8354-1
reference_type
scores
url	https://usn.ubuntu.com/8354-1/

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u5?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u5%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.0-4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-40460

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5tfv-vjkt-8kfx

url VCID-645j-ysmr-1ufu

vulnerability_id VCID-645j-ysmr-1ufu

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-2070

reference_id

reference_type

scores

value	0.06821
scoring_system	epss
scoring_elements	0.91538
published_at	2026-06-11T12:55:00Z

value	0.06821
scoring_system	epss
scoring_elements	0.91567
published_at	2026-06-12T12:55:00Z

value	0.06821
scoring_system	epss
scoring_elements	0.91575
published_at	2026-06-13T12:55:00Z

value	0.06821
scoring_system	epss
scoring_elements	0.91572
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-2070

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2070
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2070

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.4
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2013/000114.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2013/000114.html

reference_url	https://nginx.org/download/patch.2013.chunked.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2013.chunked.txt

reference_url	https://nginx.org/download/patch.2013.chunked.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2013.chunked.txt.asc

reference_url	https://nginx.org/download/patch.2013.proxy.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2013.proxy.txt

reference_url	https://nginx.org/download/patch.2013.proxy.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2013.proxy.txt.asc

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=708164
reference_id	708164
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=708164

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2013-2070
reference_id	CVE-2013-2070
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2013-2070

reference_url	https://security.gentoo.org/glsa/201310-04
reference_id	GLSA-201310-04
reference_type
scores
url	https://security.gentoo.org/glsa/201310-04

fixed_packages

url	pkg:deb/debian/nginx@1.4.1-1?distro=trixie
purl	pkg:deb/debian/nginx@1.4.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.4.1-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2013-2070

risk_score 1.8

exploitability 0.5

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-645j-ysmr-1ufu

url VCID-69y9-va6z-sbes

vulnerability_id VCID-69y9-va6z-sbes

summary NGINX before 1.13.6 has a buffer overflow for years that exceed four digits, as demonstrated by a file with a modification date in 1969 that causes an integer overflow (or a false modification date far in the future), when encountered by the autoindex module.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-20005.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-20005.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-20005

reference_id

reference_type

scores

value	0.0325
scoring_system	epss
scoring_elements	0.87458
published_at	2026-06-14T12:55:00Z

value	0.0325
scoring_system	epss
scoring_elements	0.87411
published_at	2026-06-11T12:55:00Z

value	0.0325
scoring_system	epss
scoring_elements	0.87455
published_at	2026-06-12T12:55:00Z

value	0.0325
scoring_system	epss
scoring_elements	0.8746
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-20005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-20005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-20005

reference_url

https://github.com/nginx/nginx/commit/0206ebe76f748bb39d9de4dd4b3fce777fdfdccf

reference_id

0206ebe76f748bb39d9de4dd4b3fce777fdfdccf

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-12-04T13:25:48Z/

url

https://github.com/nginx/nginx/commit/0206ebe76f748bb39d9de4dd4b3fce777fdfdccf

reference_url

https://trac.nginx.org/nginx/ticket/1368

reference_id

1368

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-12-04T13:25:48Z/

url

https://trac.nginx.org/nginx/ticket/1368

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1974192
reference_id	1974192
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1974192

reference_url

https://github.com/nginx/nginx/commit/b900cc28fcbb4cf5a32ab62f80b59292e1c85b4b

reference_id

b900cc28fcbb4cf5a32ab62f80b59292e1c85b4b

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-12-04T13:25:48Z/

url

https://github.com/nginx/nginx/commit/b900cc28fcbb4cf5a32ab62f80b59292e1c85b4b

reference_url

http://nginx.org/en/CHANGES

reference_id

CHANGES

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-12-04T13:25:48Z/

url

http://nginx.org/en/CHANGES

reference_url

https://lists.debian.org/debian-lts-announce/2021/06/msg00009.html

reference_id

msg00009.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-12-04T13:25:48Z/

url

https://lists.debian.org/debian-lts-announce/2021/06/msg00009.html

reference_url

https://security.netapp.com/advisory/ntap-20210805-0006/

reference_id

ntap-20210805-0006

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-12-04T13:25:48Z/

url

https://security.netapp.com/advisory/ntap-20210805-0006/

reference_url	https://usn.ubuntu.com/5109-1/
reference_id	USN-5109-1
reference_type
scores
url	https://usn.ubuntu.com/5109-1/

fixed_packages

url	pkg:deb/debian/nginx@1.13.6-1?distro=trixie
purl	pkg:deb/debian/nginx@1.13.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.13.6-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2017-20005

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-69y9-va6z-sbes

url VCID-6nud-6uuu-aqgx

vulnerability_id VCID-6nud-6uuu-aqgx

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9513.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9513.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-9513

reference_id

reference_type

scores

value	0.06587
scoring_system	epss
scoring_elements	0.91406
published_at	2026-06-14T12:55:00Z

value	0.06587
scoring_system	epss
scoring_elements	0.91369
published_at	2026-06-11T12:55:00Z

value	0.06587
scoring_system	epss
scoring_elements	0.914
published_at	2026-06-12T12:55:00Z

value	0.06587
scoring_system	epss
scoring_elements	0.91408
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-9513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15604

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15605
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15605

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15606
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15606

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9516

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html

reference_id

reference_type

scores

value	low
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1735741
reference_id	1735741
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1735741

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934885
reference_id	934885
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934885

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935037
reference_id	935037
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935037

reference_url	https://security.archlinux.org/ASA-201908-12
reference_id	ASA-201908-12
reference_type
scores
url	https://security.archlinux.org/ASA-201908-12

reference_url	https://security.archlinux.org/ASA-201908-13
reference_id	ASA-201908-13
reference_type
scores
url	https://security.archlinux.org/ASA-201908-13

reference_url	https://security.archlinux.org/ASA-201908-17
reference_id	ASA-201908-17
reference_type
scores
url	https://security.archlinux.org/ASA-201908-17

reference_url

reference_id

AVG-1022

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-1023

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-1024

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27651.json

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2019-9513
reference_id	CVE-2019-9513
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2019-9513

reference_url	https://access.redhat.com/errata/RHSA-2019:2692
reference_id	RHSA-2019:2692
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2692

reference_url	https://access.redhat.com/errata/RHSA-2019:2745
reference_id	RHSA-2019:2745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2745

reference_url	https://access.redhat.com/errata/RHSA-2019:2746
reference_id	RHSA-2019:2746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2746

reference_url	https://access.redhat.com/errata/RHSA-2019:2775
reference_id	RHSA-2019:2775
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2775

reference_url	https://access.redhat.com/errata/RHSA-2019:2799
reference_id	RHSA-2019:2799
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2799

reference_url	https://access.redhat.com/errata/RHSA-2019:2925
reference_id	RHSA-2019:2925
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2925

reference_url	https://access.redhat.com/errata/RHSA-2019:2939
reference_id	RHSA-2019:2939
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2939

reference_url	https://access.redhat.com/errata/RHSA-2019:2946
reference_id	RHSA-2019:2946
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2946

reference_url	https://access.redhat.com/errata/RHSA-2019:2949
reference_id	RHSA-2019:2949
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2949

reference_url	https://access.redhat.com/errata/RHSA-2019:2955
reference_id	RHSA-2019:2955
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2955

reference_url	https://access.redhat.com/errata/RHSA-2019:2966
reference_id	RHSA-2019:2966
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2966

reference_url	https://access.redhat.com/errata/RHSA-2019:3041
reference_id	RHSA-2019:3041
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3041

reference_url	https://access.redhat.com/errata/RHSA-2019:3932
reference_id	RHSA-2019:3932
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3932

reference_url	https://access.redhat.com/errata/RHSA-2019:3933
reference_id	RHSA-2019:3933
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3933

reference_url	https://access.redhat.com/errata/RHSA-2019:3935
reference_id	RHSA-2019:3935
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3935

reference_url	https://access.redhat.com/errata/RHSA-2020:0983
reference_id	RHSA-2020:0983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:0983

reference_url	https://usn.ubuntu.com/4099-1/
reference_id	USN-4099-1
reference_type
scores
url	https://usn.ubuntu.com/4099-1/

reference_url	https://usn.ubuntu.com/6754-1/
reference_id	USN-6754-1
reference_type
scores
url	https://usn.ubuntu.com/6754-1/

fixed_packages

url	pkg:deb/debian/nginx@1.14.2-3?distro=trixie
purl	pkg:deb/debian/nginx@1.14.2-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.14.2-3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2019-9513

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6nud-6uuu-aqgx

url VCID-8bre-6jh4-vqes

vulnerability_id VCID-8bre-6jh4-vqes

summary

references

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27651.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-27651

reference_id

reference_type

scores

value	0.00064
scoring_system	epss
scoring_elements	0.20313
published_at	2026-06-14T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20141
published_at	2026-06-11T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20317
published_at	2026-06-12T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20336
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-27651

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27651
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27651

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2450791
reference_id	2450791
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2450791

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-27651
reference_id	CVE-2026-27651
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-27651

reference_url

https://my.f5.com/manage/s/article/K000160383

reference_id

K000160383

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-24T15:02:03Z/

url

https://my.f5.com/manage/s/article/K000160383

reference_url	https://access.redhat.com/errata/RHSA-2026:10065
reference_id	RHSA-2026:10065
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:10065

reference_url	https://access.redhat.com/errata/RHSA-2026:13634
reference_id	RHSA-2026:13634
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13634

reference_url	https://access.redhat.com/errata/RHSA-2026:13680
reference_id	RHSA-2026:13680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13680

reference_url	https://access.redhat.com/errata/RHSA-2026:13839
reference_id	RHSA-2026:13839
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13839

reference_url	https://access.redhat.com/errata/RHSA-2026:14836
reference_id	RHSA-2026:14836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:14836

reference_url	https://access.redhat.com/errata/RHSA-2026:15942
reference_id	RHSA-2026:15942
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15942

reference_url	https://access.redhat.com/errata/RHSA-2026:15943
reference_id	RHSA-2026:15943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15943

reference_url	https://access.redhat.com/errata/RHSA-2026:15945
reference_id	RHSA-2026:15945
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15945

reference_url	https://access.redhat.com/errata/RHSA-2026:15966
reference_id	RHSA-2026:15966
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15966

reference_url	https://access.redhat.com/errata/RHSA-2026:6906
reference_id	RHSA-2026:6906
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6906

reference_url	https://access.redhat.com/errata/RHSA-2026:6907
reference_id	RHSA-2026:6907
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6907

reference_url	https://access.redhat.com/errata/RHSA-2026:6923
reference_id	RHSA-2026:6923
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6923

reference_url	https://access.redhat.com/errata/RHSA-2026:7002
reference_id	RHSA-2026:7002
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7002

reference_url	https://access.redhat.com/errata/RHSA-2026:7343
reference_id	RHSA-2026:7343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7343

reference_url	https://access.redhat.com/errata/RHSA-2026:8346
reference_id	RHSA-2026:8346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8346

reference_url	https://usn.ubuntu.com/8210-1/
reference_id	USN-8210-1
reference_type
scores
url	https://usn.ubuntu.com/8210-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
purl	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.28.3-1%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-27651

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8bre-6jh4-vqes

url VCID-8qqe-kuaf-27fz

vulnerability_id VCID-8qqe-kuaf-27fz

summary

Multiple vulnerabilities have been found in nginx, the worst of
    which may allow execution of arbitrary code.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4315

reference_id

reference_type

scores

value	0.02811
scoring_system	epss
scoring_elements	0.86452
published_at	2026-06-11T12:55:00Z

value	0.02811
scoring_system	epss
scoring_elements	0.86504
published_at	2026-06-12T12:55:00Z

value	0.02811
scoring_system	epss
scoring_elements	0.86514
published_at	2026-06-13T12:55:00Z

value	0.02811
scoring_system	epss
scoring_elements	0.86511
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4315

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4315
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4315

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2011-4315
reference_id	CVE-2011-4315
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2011-4315

reference_url	https://security.gentoo.org/glsa/201203-22
reference_id	GLSA-201203-22
reference_type
scores
url	https://security.gentoo.org/glsa/201203-22

fixed_packages

url	pkg:deb/debian/nginx@1.1.8-1?distro=trixie
purl	pkg:deb/debian/nginx@1.1.8-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.1.8-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2011-4315

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8qqe-kuaf-27fz

url VCID-aq66-6ent-affy

vulnerability_id VCID-aq66-6ent-affy

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27784.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27784.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-27784

reference_id

reference_type

scores

value	0.00017
scoring_system	epss
scoring_elements	0.04176
published_at	2026-06-14T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.04173
published_at	2026-06-11T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.04185
published_at	2026-06-12T12:55:00Z

value	0.00017
scoring_system	epss
scoring_elements	0.04172
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-27784

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27784
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27784

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2450785
reference_id	2450785
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2450785

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-27784
reference_id	CVE-2026-27784
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-27784

reference_url

https://my.f5.com/manage/s/article/K000160364

reference_id

K000160364

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	8.5
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-25T03:55:53Z/

url

https://my.f5.com/manage/s/article/K000160364

reference_url	https://access.redhat.com/errata/RHSA-2026:10065
reference_id	RHSA-2026:10065
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:10065

reference_url	https://access.redhat.com/errata/RHSA-2026:13634
reference_id	RHSA-2026:13634
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13634

reference_url	https://access.redhat.com/errata/RHSA-2026:13680
reference_id	RHSA-2026:13680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13680

reference_url	https://access.redhat.com/errata/RHSA-2026:13839
reference_id	RHSA-2026:13839
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13839

reference_url	https://access.redhat.com/errata/RHSA-2026:14836
reference_id	RHSA-2026:14836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:14836

reference_url	https://access.redhat.com/errata/RHSA-2026:15942
reference_id	RHSA-2026:15942
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15942

reference_url	https://access.redhat.com/errata/RHSA-2026:15943
reference_id	RHSA-2026:15943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15943

reference_url	https://access.redhat.com/errata/RHSA-2026:15945
reference_id	RHSA-2026:15945
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15945

reference_url	https://access.redhat.com/errata/RHSA-2026:15966
reference_id	RHSA-2026:15966
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15966

reference_url	https://access.redhat.com/errata/RHSA-2026:6906
reference_id	RHSA-2026:6906
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6906

reference_url	https://access.redhat.com/errata/RHSA-2026:6907
reference_id	RHSA-2026:6907
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6907

reference_url	https://access.redhat.com/errata/RHSA-2026:6923
reference_id	RHSA-2026:6923
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6923

reference_url	https://access.redhat.com/errata/RHSA-2026:7002
reference_id	RHSA-2026:7002
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7002

reference_url	https://access.redhat.com/errata/RHSA-2026:7343
reference_id	RHSA-2026:7343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7343

reference_url	https://access.redhat.com/errata/RHSA-2026:8346
reference_id	RHSA-2026:8346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8346

reference_url	https://usn.ubuntu.com/8210-1/
reference_id	USN-8210-1
reference_type
scores
url	https://usn.ubuntu.com/8210-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
purl	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.28.3-1%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-27784

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aq66-6ent-affy

url VCID-aqee-vggt-abes

vulnerability_id VCID-aqee-vggt-abes

summary nginx 0.8 before 0.8.40 and 0.7 before 0.7.66, when running on Windows, allows remote attackers to obtain source code or unparsed content of arbitrary files under the web document root by appending ::$DATA to the URI.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-2263

reference_id

reference_type

scores

value	0.44217
scoring_system	epss
scoring_elements	0.97632
published_at	2026-06-11T12:55:00Z

value	0.44217
scoring_system	epss
scoring_elements	0.97641
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-2263

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2010-2263
reference_id	CVE-2010-2263
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2010-2263

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/13822.txt
reference_id	CVE-2010-2263;OSVDB-65531
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/13822.txt

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/13818.txt
reference_id	CVE-2010-2266;CVE-2010-2263;OSVDB-65531;OSVDB-65530
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/13818.txt

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2010-2263

risk_score 0.8

exploitability 2.0

weighted_severity 0.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aqee-vggt-abes

url VCID-b9v4-zgqb-myfv

vulnerability_id VCID-b9v4-zgqb-myfv

summary nginx 0.8.36 allows remote attackers to cause a denial of service (crash) via certain encoded directory traversal sequences that trigger memory corruption, as demonstrated using the "%c0.%c0." sequence.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-2266

reference_id

reference_type

scores

value	0.07262
scoring_system	epss
scoring_elements	0.91824
published_at	2026-06-11T12:55:00Z

value	0.07262
scoring_system	epss
scoring_elements	0.91852
published_at	2026-06-12T12:55:00Z

value	0.07262
scoring_system	epss
scoring_elements	0.91859
published_at	2026-06-13T12:55:00Z

value	0.07262
scoring_system	epss
scoring_elements	0.91855
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-2266

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2010-2266
reference_id	CVE-2010-2266
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2010-2266

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2010-2266

risk_score 0.2

exploitability 2.0

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b9v4-zgqb-myfv

url VCID-dg5x-xnnh-uqa2

vulnerability_id VCID-dg5x-xnnh-uqa2

summary

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0747.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0747.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-0747

reference_id

reference_type

scores

value	0.20023
scoring_system	epss
scoring_elements	0.95616
published_at	2026-06-11T12:55:00Z

value	0.20023
scoring_system	epss
scoring_elements	0.95629
published_at	2026-06-12T12:55:00Z

value	0.20023
scoring_system	epss
scoring_elements	0.95631
published_at	2026-06-13T12:55:00Z

value	0.20023
scoring_system	epss
scoring_elements	0.95633
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-0747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0747

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.6
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1302589
reference_id	1302589
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1302589

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812806
reference_id	812806
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812806

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2016-0747
reference_id	CVE-2016-0747
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2016-0747

reference_url	https://security.gentoo.org/glsa/201606-06
reference_id	GLSA-201606-06
reference_type
scores
url	https://security.gentoo.org/glsa/201606-06

reference_url	https://access.redhat.com/errata/RHSA-2016:1425
reference_id	RHSA-2016:1425
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1425

reference_url	https://usn.ubuntu.com/2892-1/
reference_id	USN-2892-1
reference_type
scores
url	https://usn.ubuntu.com/2892-1/

fixed_packages

url	pkg:deb/debian/nginx@1.9.10-1?distro=trixie
purl	pkg:deb/debian/nginx@1.9.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.9.10-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2016-0747

risk_score 1.8

exploitability 0.5

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dg5x-xnnh-uqa2

url VCID-dvrn-gwcr-j3gz

vulnerability_id VCID-dvrn-gwcr-j3gz

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-42926

reference_id

reference_type

scores

value	0.00027
scoring_system	epss
scoring_elements	0.08051
published_at	2026-06-11T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.08082
published_at	2026-06-13T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.08086
published_at	2026-06-12T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.0836
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-42926

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-42926
reference_id	CVE-2026-42926
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-42926

reference_url

https://my.f5.com/manage/s/article/K000161131

reference_id

K000161131

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:54:52Z/

url

https://my.f5.com/manage/s/article/K000161131

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.0-4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-42926

risk_score 1.6

exploitability 0.5

weighted_severity 3.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dvrn-gwcr-j3gz

url VCID-exkp-mwuv-4fd6

vulnerability_id VCID-exkp-mwuv-4fd6

summary nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access restricted files via (1) a trailing . (dot) or (2) certain "$index_allocation" sequences in a request.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4963

reference_id

reference_type

scores

value	0.0031
scoring_system	epss
scoring_elements	0.54595
published_at	2026-06-11T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.5472
published_at	2026-06-14T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54736
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4963

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2012/000086.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2012/000086.html

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2011-4963
reference_id	CVE-2011-4963
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2011-4963

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2011-4963

risk_score 1.8

exploitability 0.5

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-exkp-mwuv-4fd6

url VCID-eywa-z82t-wqba

vulnerability_id VCID-eywa-z82t-wqba

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42945.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42945.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-42945

reference_id

reference_type

scores

value	0.00288
scoring_system	epss
scoring_elements	0.5257
published_at	2026-06-11T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52713
published_at	2026-06-13T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52699
published_at	2026-06-12T12:55:00Z

value	0.00418
scoring_system	epss
scoring_elements	0.62346
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-42945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42945

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2477116
reference_id	2477116
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2477116

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-42945
reference_id	CVE-2026-42945
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-42945

reference_url

https://my.f5.com/manage/s/article/K000161019

reference_id

K000161019

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-13T15:55:27Z/

url

https://my.f5.com/manage/s/article/K000161019

reference_url	https://access.redhat.com/errata/RHSA-2026:17417
reference_id	RHSA-2026:17417
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17417

reference_url	https://access.redhat.com/errata/RHSA-2026:17751
reference_id	RHSA-2026:17751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17751

reference_url	https://access.redhat.com/errata/RHSA-2026:17752
reference_id	RHSA-2026:17752
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17752

reference_url	https://access.redhat.com/errata/RHSA-2026:17753
reference_id	RHSA-2026:17753
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17753

reference_url	https://access.redhat.com/errata/RHSA-2026:17790
reference_id	RHSA-2026:17790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17790

reference_url	https://access.redhat.com/errata/RHSA-2026:17791
reference_id	RHSA-2026:17791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17791

reference_url	https://access.redhat.com/errata/RHSA-2026:17792
reference_id	RHSA-2026:17792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17792

reference_url	https://access.redhat.com/errata/RHSA-2026:17793
reference_id	RHSA-2026:17793
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17793

reference_url	https://access.redhat.com/errata/RHSA-2026:17794
reference_id	RHSA-2026:17794
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17794

reference_url	https://access.redhat.com/errata/RHSA-2026:18029
reference_id	RHSA-2026:18029
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:18029

reference_url	https://access.redhat.com/errata/RHSA-2026:18041
reference_id	RHSA-2026:18041
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:18041

reference_url	https://access.redhat.com/errata/RHSA-2026:18063
reference_id	RHSA-2026:18063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:18063

reference_url	https://access.redhat.com/errata/RHSA-2026:19159
reference_id	RHSA-2026:19159
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:19159

reference_url	https://access.redhat.com/errata/RHSA-2026:19371
reference_id	RHSA-2026:19371
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:19371

reference_url	https://access.redhat.com/errata/RHSA-2026:19372
reference_id	RHSA-2026:19372
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:19372

reference_url	https://access.redhat.com/errata/RHSA-2026:19374
reference_id	RHSA-2026:19374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:19374

reference_url	https://access.redhat.com/errata/RHSA-2026:20442
reference_id	RHSA-2026:20442
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:20442

reference_url	https://access.redhat.com/errata/RHSA-2026:20444
reference_id	RHSA-2026:20444
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:20444

reference_url	https://access.redhat.com/errata/RHSA-2026:21275
reference_id	RHSA-2026:21275
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:21275

reference_url	https://usn.ubuntu.com/8271-1/
reference_id	USN-8271-1
reference_type
scores
url	https://usn.ubuntu.com/8271-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u7%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u5?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u5%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.0-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.0-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-42945

risk_score 3.6

exploitability 0.5

weighted_severity 7.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eywa-z82t-wqba

url VCID-f5zj-qp67-9yh4

vulnerability_id VCID-f5zj-qp67-9yh4

summary The STARTTLS implementation in mail/ngx_mail_smtp_handler.c in the SMTP proxy in nginx 1.5.x and 1.6.x before 1.6.1 and 1.7.x before 1.7.4 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3556.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3556.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-3556

reference_id

reference_type

scores

value	0.48169
scoring_system	epss
scoring_elements	0.97798
published_at	2026-06-11T12:55:00Z

value	0.48169
scoring_system	epss
scoring_elements	0.97808
published_at	2026-06-12T12:55:00Z

value	0.48169
scoring_system	epss
scoring_elements	0.97809
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3556

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3556
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3556

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2014/000144.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2014/000144.html

reference_url	https://nginx.org/download/patch.2014.starttls.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2014.starttls.txt

reference_url	https://nginx.org/download/patch.2014.starttls.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2014.starttls.txt.asc

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1126891
reference_id	1126891
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1126891

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=757196
reference_id	757196
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=757196

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2014-3556
reference_id	CVE-2014-3556
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2014-3556

fixed_packages

url	pkg:deb/debian/nginx@1.6.1-1?distro=trixie
purl	pkg:deb/debian/nginx@1.6.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.6.1-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2014-3556

risk_score 1.8

exploitability 0.5

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f5zj-qp67-9yh4

url VCID-gcgh-emuh-x3d5

vulnerability_id VCID-gcgh-emuh-x3d5

summary

Multiple vulnerabilities have been found in nginx, the worst of
    which may allow execution of arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3896.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3896.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3896

reference_id

reference_type

scores

value	0.02511
scoring_system	epss
scoring_elements	0.85687
published_at	2026-06-11T12:55:00Z

value	0.03372
scoring_system	epss
scoring_elements	0.87681
published_at	2026-06-12T12:55:00Z

value	0.03372
scoring_system	epss
scoring_elements	0.87688
published_at	2026-06-13T12:55:00Z

value	0.03372
scoring_system	epss
scoring_elements	0.87685
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3896

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3896
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3896

reference_url	https://nginx.org/download/patch.null.pointer.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.null.pointer.txt

reference_url	https://nginx.org/download/patch.null.pointer.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.null.pointer.txt.asc

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=539565
reference_id	539565
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=539565

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2009-3896
reference_id	CVE-2009-3896
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2009-3896

reference_url	https://security.gentoo.org/glsa/201203-22
reference_id	GLSA-201203-22
reference_type
scores
url	https://security.gentoo.org/glsa/201203-22

fixed_packages

url	pkg:deb/debian/nginx@0.7.62-1?distro=trixie
purl	pkg:deb/debian/nginx@0.7.62-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0.7.62-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2009-3896

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gcgh-emuh-x3d5

url VCID-gur7-ed45-cqdc

vulnerability_id VCID-gur7-ed45-cqdc

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16843.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16843.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16843

reference_id

reference_type

scores

value	0.57804
scoring_system	epss
scoring_elements	0.98213
published_at	2026-06-11T12:55:00Z

value	0.57804
scoring_system	epss
scoring_elements	0.98219
published_at	2026-06-12T12:55:00Z

value	0.57804
scoring_system	epss
scoring_elements	0.98221
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16843

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16843
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16843

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16844
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16844

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16845
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16845

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html

reference_id

reference_type

scores

value	low
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1644511
reference_id	1644511
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1644511

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913090
reference_id	913090
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913090

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2018-16843
reference_id	CVE-2018-16843
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2018-16843

reference_url	https://access.redhat.com/errata/RHSA-2018:3653
reference_id	RHSA-2018:3653
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3653

reference_url	https://access.redhat.com/errata/RHSA-2018:3680
reference_id	RHSA-2018:3680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3680

reference_url	https://access.redhat.com/errata/RHSA-2018:3681
reference_id	RHSA-2018:3681
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3681

reference_url	https://usn.ubuntu.com/3812-1/
reference_id	USN-3812-1
reference_type
scores
url	https://usn.ubuntu.com/3812-1/

fixed_packages

url	pkg:deb/debian/nginx@1.14.1-1?distro=trixie
purl	pkg:deb/debian/nginx@1.14.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.14.1-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2018-16843

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gur7-ed45-cqdc

url VCID-h1cx-a1dz-auae

vulnerability_id VCID-h1cx-a1dz-auae

summary When the NGINX Plus is configured to use the MQTT pre-read module, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-39792

reference_id

reference_type

scores

value	0.01047
scoring_system	epss
scoring_elements	0.77919
published_at	2026-06-11T12:55:00Z

value	0.01047
scoring_system	epss
scoring_elements	0.77987
published_at	2026-06-12T12:55:00Z

value	0.01047
scoring_system	epss
scoring_elements	0.78
published_at	2026-06-13T12:55:00Z

value	0.01047
scoring_system	epss
scoring_elements	0.77994
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-39792

reference_url

https://my.f5.com/manage/s/article/K000140108

reference_id

K000140108

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-15T13:59:03Z/

url

https://my.f5.com/manage/s/article/K000140108

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2024-39792

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h1cx-a1dz-auae

url VCID-h9rv-seb3-xbbh

vulnerability_id VCID-h9rv-seb3-xbbh

summary

Multiple vulnerabilities have been found in nginx, the worst of
    which may allow execution of arbitrary code.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3898

reference_id

reference_type

scores

value	0.01078
scoring_system	epss
scoring_elements	0.78231
published_at	2026-06-11T12:55:00Z

value	0.01078
scoring_system	epss
scoring_elements	0.78298
published_at	2026-06-12T12:55:00Z

value	0.01078
scoring_system	epss
scoring_elements	0.78312
published_at	2026-06-13T12:55:00Z

value	0.01078
scoring_system	epss
scoring_elements	0.78307
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3898

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3898
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3898

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=557389
reference_id	557389
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=557389

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2009-3898
reference_id	CVE-2009-3898
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2009-3898

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/9829.txt
reference_id	CVE-2009-3898;OSVDB-58328
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/9829.txt

reference_url	https://security.gentoo.org/glsa/201203-22
reference_id	GLSA-201203-22
reference_type
scores
url	https://security.gentoo.org/glsa/201203-22

fixed_packages

url	pkg:deb/debian/nginx@0.7.63-1?distro=trixie
purl	pkg:deb/debian/nginx@0.7.63-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0.7.63-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2009-3898

risk_score null

exploitability 2.0

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h9rv-seb3-xbbh

url VCID-k9qk-56r3-qqcn

vulnerability_id VCID-k9qk-56r3-qqcn

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16845.json

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16845.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16845

reference_id

reference_type

scores

value	0.03918
scoring_system	epss
scoring_elements	0.88571
published_at	2026-06-11T12:55:00Z

value	0.03918
scoring_system	epss
scoring_elements	0.8861
published_at	2026-06-12T12:55:00Z

value	0.03918
scoring_system	epss
scoring_elements	0.88617
published_at	2026-06-13T12:55:00Z

value	0.03918
scoring_system	epss
scoring_elements	0.88615
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16845

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16843
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16843

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16844
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16844

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16845
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16845

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html

reference_url	https://nginx.org/download/patch.2018.mp4.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2018.mp4.txt

reference_url	https://nginx.org/download/patch.2018.mp4.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2018.mp4.txt.asc

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1644508
reference_id	1644508
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1644508

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913090
reference_id	913090
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913090

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2018-16845
reference_id	CVE-2018-16845
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2018-16845

reference_url	https://access.redhat.com/errata/RHSA-2018:3652
reference_id	RHSA-2018:3652
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3652

reference_url	https://access.redhat.com/errata/RHSA-2018:3653
reference_id	RHSA-2018:3653
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3653

reference_url	https://access.redhat.com/errata/RHSA-2018:3680
reference_id	RHSA-2018:3680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3680

reference_url	https://access.redhat.com/errata/RHSA-2018:3681
reference_id	RHSA-2018:3681
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3681

reference_url	https://usn.ubuntu.com/3812-1/
reference_id	USN-3812-1
reference_type
scores
url	https://usn.ubuntu.com/3812-1/

fixed_packages

url	pkg:deb/debian/nginx@1.14.1-1?distro=trixie
purl	pkg:deb/debian/nginx@1.14.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.14.1-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2018-16845

risk_score 3.7

exploitability 0.5

weighted_severity 7.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k9qk-56r3-qqcn

url VCID-kfqr-1vmd-6qcj

vulnerability_id VCID-kfqr-1vmd-6qcj

summary

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0742.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0742.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-0742

reference_id

reference_type

scores

value	0.78788
scoring_system	epss
scoring_elements	0.99072
published_at	2026-06-11T12:55:00Z

value	0.78788
scoring_system	epss
scoring_elements	0.99077
published_at	2026-06-14T12:55:00Z

value	0.78788
scoring_system	epss
scoring_elements	0.99078
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-0742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0747

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1302587
reference_id	1302587
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1302587

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812806
reference_id	812806
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812806

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2016-0742
reference_id	CVE-2016-0742
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2016-0742

reference_url	https://security.gentoo.org/glsa/201606-06
reference_id	GLSA-201606-06
reference_type
scores
url	https://security.gentoo.org/glsa/201606-06

reference_url	https://access.redhat.com/errata/RHSA-2016:1425
reference_id	RHSA-2016:1425
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1425

reference_url	https://usn.ubuntu.com/2892-1/
reference_id	USN-2892-1
reference_type
scores
url	https://usn.ubuntu.com/2892-1/

fixed_packages

url	pkg:deb/debian/nginx@1.9.10-1?distro=trixie
purl	pkg:deb/debian/nginx@1.9.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.9.10-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2016-0742

risk_score 1.8

exploitability 0.5

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kfqr-1vmd-6qcj

url VCID-m5h6-uu1b-yfcn

vulnerability_id VCID-m5h6-uu1b-yfcn

summary nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4968

reference_id

reference_type

scores

value	0.00391
scoring_system	epss
scoring_elements	0.60529
published_at	2026-06-11T12:55:00Z

value	0.00391
scoring_system	epss
scoring_elements	0.60635
published_at	2026-06-12T12:55:00Z

value	0.00391
scoring_system	epss
scoring_elements	0.60646
published_at	2026-06-13T12:55:00Z

value	0.00391
scoring_system	epss
scoring_elements	0.60637
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4968

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4968
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4968

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697940
reference_id	697940
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697940

fixed_packages

url	pkg:deb/debian/nginx@1.9.1-1?distro=trixie
purl	pkg:deb/debian/nginx@1.9.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.9.1-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2011-4968

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m5h6-uu1b-yfcn

url VCID-mee8-n6tb-f3bp

vulnerability_id VCID-mee8-n6tb-f3bp

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32647.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32647.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-32647

reference_id

reference_type

scores

value	0.00026
scoring_system	epss
scoring_elements	0.07981
published_at	2026-06-14T12:55:00Z

value	0.00026
scoring_system	epss
scoring_elements	0.07954
published_at	2026-06-11T12:55:00Z

value	0.00026
scoring_system	epss
scoring_elements	0.07989
published_at	2026-06-12T12:55:00Z

value	0.00026
scoring_system	epss
scoring_elements	0.07985
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-32647

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32647
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32647

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2449598
reference_id	2449598
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2449598

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-32647
reference_id	CVE-2026-32647
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-32647

reference_url

https://my.f5.com/manage/s/article/K000160366

reference_id

K000160366

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	8.5
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T14:51:04Z/

url

https://my.f5.com/manage/s/article/K000160366

reference_url	https://access.redhat.com/errata/RHSA-2026:10065
reference_id	RHSA-2026:10065
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:10065

reference_url	https://access.redhat.com/errata/RHSA-2026:13634
reference_id	RHSA-2026:13634
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13634

reference_url	https://access.redhat.com/errata/RHSA-2026:13680
reference_id	RHSA-2026:13680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13680

reference_url	https://access.redhat.com/errata/RHSA-2026:13839
reference_id	RHSA-2026:13839
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:13839

reference_url	https://access.redhat.com/errata/RHSA-2026:14836
reference_id	RHSA-2026:14836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:14836

reference_url	https://access.redhat.com/errata/RHSA-2026:15942
reference_id	RHSA-2026:15942
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15942

reference_url	https://access.redhat.com/errata/RHSA-2026:15943
reference_id	RHSA-2026:15943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15943

reference_url	https://access.redhat.com/errata/RHSA-2026:15945
reference_id	RHSA-2026:15945
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15945

reference_url	https://access.redhat.com/errata/RHSA-2026:15966
reference_id	RHSA-2026:15966
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15966

reference_url	https://access.redhat.com/errata/RHSA-2026:6906
reference_id	RHSA-2026:6906
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6906

reference_url	https://access.redhat.com/errata/RHSA-2026:6907
reference_id	RHSA-2026:6907
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6907

reference_url	https://access.redhat.com/errata/RHSA-2026:6923
reference_id	RHSA-2026:6923
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6923

reference_url	https://access.redhat.com/errata/RHSA-2026:7002
reference_id	RHSA-2026:7002
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7002

reference_url	https://access.redhat.com/errata/RHSA-2026:7343
reference_id	RHSA-2026:7343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7343

reference_url	https://access.redhat.com/errata/RHSA-2026:8346
reference_id	RHSA-2026:8346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8346

reference_url	https://usn.ubuntu.com/8210-1/
reference_id	USN-8210-1
reference_type
scores
url	https://usn.ubuntu.com/8210-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
purl	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.28.3-1%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-32647

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mee8-n6tb-f3bp

url VCID-mheh-pg7e-4bb7

vulnerability_id VCID-mheh-pg7e-4bb7

summary

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0746.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0746.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-0746

reference_id

reference_type

scores

value	0.06343
scoring_system	epss
scoring_elements	0.9119
published_at	2026-06-11T12:55:00Z

value	0.06343
scoring_system	epss
scoring_elements	0.9122
published_at	2026-06-12T12:55:00Z

value	0.06343
scoring_system	epss
scoring_elements	0.91227
published_at	2026-06-13T12:55:00Z

value	0.06343
scoring_system	epss
scoring_elements	0.91226
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-0746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0747

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.6
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1302588
reference_id	1302588
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1302588

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812806
reference_id	812806
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812806

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2016-0746
reference_id	CVE-2016-0746
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2016-0746

reference_url	https://security.gentoo.org/glsa/201606-06
reference_id	GLSA-201606-06
reference_type
scores
url	https://security.gentoo.org/glsa/201606-06

reference_url	https://access.redhat.com/errata/RHSA-2016:1425
reference_id	RHSA-2016:1425
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1425

reference_url	https://usn.ubuntu.com/2892-1/
reference_id	USN-2892-1
reference_type
scores
url	https://usn.ubuntu.com/2892-1/

fixed_packages

url	pkg:deb/debian/nginx@1.9.10-1?distro=trixie
purl	pkg:deb/debian/nginx@1.9.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.9.10-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2016-0746

risk_score 1.8

exploitability 0.5

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mheh-pg7e-4bb7

url VCID-mzed-938r-3qgz

vulnerability_id VCID-mzed-938r-3qgz

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-53859.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-53859.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-53859

reference_id

reference_type

scores

value	0.00056
scoring_system	epss
scoring_elements	0.18042
published_at	2026-06-14T12:55:00Z

value	0.00056
scoring_system	epss
scoring_elements	0.1789
published_at	2026-06-11T12:55:00Z

value	0.00056
scoring_system	epss
scoring_elements	0.1805
published_at	2026-06-12T12:55:00Z

value	0.00056
scoring_system	epss
scoring_elements	0.18066
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-53859

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53859
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53859

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111138
reference_id	1111138
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111138

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2388238
reference_id	2388238
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2388238

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2025-53859
reference_id	CVE-2025-53859
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2025-53859

reference_url

https://my.f5.com/manage/s/article/K000152786

reference_id

K000152786

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-13T15:06:23Z/

url

https://my.f5.com/manage/s/article/K000152786

reference_url	https://access.redhat.com/errata/RHSA-2026:8346
reference_id	RHSA-2026:8346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8346

reference_url	https://usn.ubuntu.com/7715-1/
reference_id	USN-7715-1
reference_type
scores
url	https://usn.ubuntu.com/7715-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u3?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.28.0-3?distro=trixie
purl	pkg:deb/debian/nginx@1.28.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.28.0-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2025-53859

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mzed-938r-3qgz

url VCID-nr89-2nr3-p3cj

vulnerability_id VCID-nr89-2nr3-p3cj

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-32760.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-32760.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-32760

reference_id

reference_type

scores

value	0.00483
scoring_system	epss
scoring_elements	0.65795
published_at	2026-06-14T12:55:00Z

value	0.00483
scoring_system	epss
scoring_elements	0.65799
published_at	2026-06-13T12:55:00Z

value	0.00483
scoring_system	epss
scoring_elements	0.65785
published_at	2026-06-12T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.66275
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-32760

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2283933
reference_id	2283933
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2283933

reference_url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:25:43Z/

url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-32760
reference_id	CVE-2024-32760
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-32760

reference_url

https://my.f5.com/manage/s/article/K000139609

reference_id

K000139609

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:25:43Z/

url

https://my.f5.com/manage/s/article/K000139609

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD/

reference_id

MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:25:43Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7RPLWC35WHEUFCGKNFG62ESNID25TEZ/

reference_id

R7RPLWC35WHEUFCGKNFG62ESNID25TEZ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:25:43Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7RPLWC35WHEUFCGKNFG62ESNID25TEZ/

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
purl	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.0-2%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2024-32760

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nr89-2nr3-p3cj

url VCID-pafc-49eh-gya5

vulnerability_id VCID-pafc-49eh-gya5

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31079.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31079.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-31079

reference_id

reference_type

scores

value	0.00832
scoring_system	epss
scoring_elements	0.75027
published_at	2026-06-11T12:55:00Z

value	0.00832
scoring_system	epss
scoring_elements	0.75107
published_at	2026-06-14T12:55:00Z

value	0.00832
scoring_system	epss
scoring_elements	0.7511
published_at	2026-06-13T12:55:00Z

value	0.00832
scoring_system	epss
scoring_elements	0.75097
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-31079

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2024/GMY32CSHFH6VFTN76HJNX7WNEX4RLHF6.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2283940
reference_id	2283940
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2283940

reference_url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:38:41Z/

url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-31079
reference_id	CVE-2024-31079
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-31079

reference_url

https://my.f5.com/manage/s/article/K000139611

reference_id

K000139611

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:38:41Z/

url

https://my.f5.com/manage/s/article/K000139611

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD/

reference_id

MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:38:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MLAOKJWDALQZBIV3WKGPJ6T5Z56D3PRD/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7RPLWC35WHEUFCGKNFG62ESNID25TEZ/

reference_id

R7RPLWC35WHEUFCGKNFG62ESNID25TEZ

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-29T18:38:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7RPLWC35WHEUFCGKNFG62ESNID25TEZ/

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
purl	pkg:deb/debian/nginx@1.26.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.0-2%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2024-31079

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pafc-49eh-gya5

url VCID-peqk-xqma-wbfn

vulnerability_id VCID-peqk-xqma-wbfn

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9256.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9256.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-9256

reference_id

reference_type

scores

value	0.00076
scoring_system	epss
scoring_elements	0.23007
published_at	2026-06-14T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.22822
published_at	2026-06-11T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.23019
published_at	2026-06-12T12:55:00Z

value	0.00076
scoring_system	epss
scoring_elements	0.23029
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-9256

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9256
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9256

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1137339
reference_id	1137339
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1137339

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2480746
reference_id	2480746
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2480746

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-9256
reference_id	CVE-2026-9256
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-9256

reference_url

https://my.f5.com/manage/s/article/K000161377

reference_id

K000161377

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-22T14:50:29Z/

url

https://my.f5.com/manage/s/article/K000161377

reference_url	https://access.redhat.com/errata/RHSA-2026:20351
reference_id	RHSA-2026:20351
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:20351

reference_url	https://usn.ubuntu.com/8354-1/
reference_id	USN-8354-1
reference_type
scores
url	https://usn.ubuntu.com/8354-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u8?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u8?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u6?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-9256

risk_score 3.6

exploitability 0.5

weighted_severity 7.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-peqk-xqma-wbfn

url VCID-qf8y-fzdz-auh4

vulnerability_id VCID-qf8y-fzdz-auh4

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28753.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28753.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-28753

reference_id

reference_type

scores

value	0.00031
scoring_system	epss
scoring_elements	0.09407
published_at	2026-06-14T12:55:00Z

value	0.00031
scoring_system	epss
scoring_elements	0.09368
published_at	2026-06-11T12:55:00Z

value	0.00031
scoring_system	epss
scoring_elements	0.09423
published_at	2026-06-12T12:55:00Z

value	0.00031
scoring_system	epss
scoring_elements	0.09418
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-28753

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-28753
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-28753

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2450780
reference_id	2450780
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2450780

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-28753
reference_id	CVE-2026-28753
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-28753

reference_url

https://my.f5.com/manage/s/article/K000160367

reference_id

K000160367

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-24T15:24:28Z/

url

https://my.f5.com/manage/s/article/K000160367

reference_url	https://access.redhat.com/errata/RHSA-2026:8346
reference_id	RHSA-2026:8346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8346

reference_url	https://usn.ubuntu.com/8210-1/
reference_id	USN-8210-1
reference_type
scores
url	https://usn.ubuntu.com/8210-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
purl	pkg:deb/debian/nginx@1.28.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.28.3-1%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-28753

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qf8y-fzdz-auh4

url VCID-qp5g-hz8m-uubu

vulnerability_id VCID-qp5g-hz8m-uubu

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1247.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1247.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-1247

reference_id

reference_type

scores

value	0.0983
scoring_system	epss
scoring_elements	0.93172
published_at	2026-06-13T12:55:00Z

value	0.0983
scoring_system	epss
scoring_elements	0.93171
published_at	2026-06-12T12:55:00Z

value	0.0983
scoring_system	epss
scoring_elements	0.93148
published_at	2026-06-11T12:55:00Z

value	0.11248
scoring_system	epss
scoring_elements	0.93712
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-1247

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1247
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1247

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:S/C:C/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1390182
reference_id	1390182
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1390182

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842295
reference_id	842295
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842295

reference_url	https://security.archlinux.org/ASA-201701-23
reference_id	ASA-201701-23
reference_type
scores
url	https://security.archlinux.org/ASA-201701-23

reference_url	https://security.archlinux.org/ASA-201701-24
reference_id	ASA-201701-24
reference_type
scores
url	https://security.archlinux.org/ASA-201701-24

reference_url

https://security.archlinux.org/AVG-138

reference_id

AVG-138

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-138

reference_url

https://security.archlinux.org/AVG-139

reference_id

AVG-139

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-139

reference_url	http://legalhackers.com/advisories/Nginx-Exploit-Deb-Root-PrivEsc-CVE-2016-1247.html
reference_id	CVE-2016-1247
reference_type	exploit
scores
url	http://legalhackers.com/advisories/Nginx-Exploit-Deb-Root-PrivEsc-CVE-2016-1247.html

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/40768.sh
reference_id	CVE-2016-1247
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/40768.sh

reference_url	https://security.gentoo.org/glsa/201701-22
reference_id	GLSA-201701-22
reference_type
scores
url	https://security.gentoo.org/glsa/201701-22

reference_url	https://usn.ubuntu.com/3114-1/
reference_id	USN-3114-1
reference_type
scores
url	https://usn.ubuntu.com/3114-1/

fixed_packages

url	pkg:deb/debian/nginx@1.10.2-1?distro=trixie
purl	pkg:deb/debian/nginx@1.10.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.10.2-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2016-1247

risk_score 10.0

exploitability 2.0

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qp5g-hz8m-uubu

url VCID-r1d9-x7q5-qkgk

vulnerability_id VCID-r1d9-x7q5-qkgk

summary security update

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4929.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4929.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-4929

reference_id

reference_type

scores

value	0.08487
scoring_system	epss
scoring_elements	0.92549
published_at	2026-06-11T12:55:00Z

value	0.08487
scoring_system	epss
scoring_elements	0.92575
published_at	2026-06-12T12:55:00Z

value	0.08487
scoring_system	epss
scoring_elements	0.92578
published_at	2026-06-13T12:55:00Z

value	0.08487
scoring_system	epss
scoring_elements	0.92579
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4929

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4929
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4929

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689936
reference_id	689936
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689936

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700399
reference_id	700399
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700399

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700426
reference_id	700426
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700426

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=727197
reference_id	727197
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=727197

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=728055
reference_id	728055
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=728055

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=857051
reference_id	857051
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=857051

reference_url	https://security.gentoo.org/glsa/201309-12
reference_id	GLSA-201309-12
reference_type
scores
url	https://security.gentoo.org/glsa/201309-12

reference_url	https://access.redhat.com/errata/RHSA-2013:0587
reference_id	RHSA-2013:0587
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0587

reference_url	https://access.redhat.com/errata/RHSA-2013:0636
reference_id	RHSA-2013:0636
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0636

reference_url	https://access.redhat.com/errata/RHSA-2014:0416
reference_id	RHSA-2014:0416
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:0416

reference_url	https://usn.ubuntu.com/1627-1/
reference_id	USN-1627-1
reference_type
scores
url	https://usn.ubuntu.com/1627-1/

reference_url	https://usn.ubuntu.com/1628-1/
reference_id	USN-1628-1
reference_type
scores
url	https://usn.ubuntu.com/1628-1/

reference_url	https://usn.ubuntu.com/1898-1/
reference_id	USN-1898-1
reference_type
scores
url	https://usn.ubuntu.com/1898-1/

fixed_packages

url	pkg:deb/debian/nginx@1.2.1-2.2?distro=trixie
purl	pkg:deb/debian/nginx@1.2.1-2.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.2.1-2.2%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2012-4929

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r1d9-x7q5-qkgk

url VCID-r23x-kt5e-bufv

vulnerability_id VCID-r23x-kt5e-bufv

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1642.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1642.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-1642

reference_id

reference_type

scores

value	0.0002
scoring_system	epss
scoring_elements	0.05908
published_at	2026-06-14T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05898
published_at	2026-06-11T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05923
published_at	2026-06-12T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05915
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-1642

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1642
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1642

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127053
reference_id	1127053
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127053

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2436738
reference_id	2436738
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2436738

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-1642
reference_id	CVE-2026-1642
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-1642

reference_url

https://my.f5.com/manage/s/article/K000159824

reference_id

K000159824

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-04T16:01:47Z/

url

https://my.f5.com/manage/s/article/K000159824

reference_url	https://access.redhat.com/errata/RHSA-2026:10065
reference_id	RHSA-2026:10065
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:10065

reference_url	https://access.redhat.com/errata/RHSA-2026:3638
reference_id	RHSA-2026:3638
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3638

reference_url	https://access.redhat.com/errata/RHSA-2026:4235
reference_id	RHSA-2026:4235
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4235

reference_url	https://access.redhat.com/errata/RHSA-2026:4501
reference_id	RHSA-2026:4501
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4501

reference_url	https://access.redhat.com/errata/RHSA-2026:4705
reference_id	RHSA-2026:4705
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4705

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:5581
reference_id	RHSA-2026:5581
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5581

reference_url	https://access.redhat.com/errata/RHSA-2026:5599
reference_id	RHSA-2026:5599
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5599

reference_url	https://access.redhat.com/errata/RHSA-2026:6182
reference_id	RHSA-2026:6182
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6182

reference_url	https://access.redhat.com/errata/RHSA-2026:6234
reference_id	RHSA-2026:6234
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6234

reference_url	https://access.redhat.com/errata/RHSA-2026:6235
reference_id	RHSA-2026:6235
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6235

reference_url	https://access.redhat.com/errata/RHSA-2026:6302
reference_id	RHSA-2026:6302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6302

reference_url	https://access.redhat.com/errata/RHSA-2026:6311
reference_id	RHSA-2026:6311
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6311

reference_url	https://access.redhat.com/errata/RHSA-2026:6407
reference_id	RHSA-2026:6407
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6407

reference_url	https://access.redhat.com/errata/RHSA-2026:6408
reference_id	RHSA-2026:6408
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6408

reference_url	https://access.redhat.com/errata/RHSA-2026:6427
reference_id	RHSA-2026:6427
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6427

reference_url	https://access.redhat.com/errata/RHSA-2026:8346
reference_id	RHSA-2026:8346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8346

reference_url	https://usn.ubuntu.com/8038-1/
reference_id	USN-8038-1
reference_type
scores
url	https://usn.ubuntu.com/8038-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u4?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u2?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.28.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.28.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.28.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-1642

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r23x-kt5e-bufv

url VCID-r8u3-ce91-jyhs

vulnerability_id VCID-r8u3-ce91-jyhs

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-2028

reference_id

reference_type

scores

value	0.93039
scoring_system	epss
scoring_elements	0.99793
published_at	2026-06-11T12:55:00Z

value	0.93039
scoring_system	epss
scoring_elements	0.99794
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-2028

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://mailman.nginx.org/pipermail/nginx-announce/2013/000112.html
reference_id
reference_type
scores
url	https://mailman.nginx.org/pipermail/nginx-announce/2013/000112.html

reference_url	https://nginx.org/download/patch.2013.chunked.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2013.chunked.txt

reference_url	https://nginx.org/download/patch.2013.chunked.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2013.chunked.txt.asc

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux_x86-64/remote/32277.txt
reference_id	CVE-2013-2028
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux_x86-64/remote/32277.txt

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2013-2028
reference_id	CVE-2013-2028
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2013-2028

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/25499.py
reference_id	CVE-2013-2028;OSVDB-93037
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/25499.py

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/25775.rb
reference_id	CVE-2013-2028;OSVDB-93037
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/25775.rb

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux_x86/remote/26737.pl
reference_id	CVE-2013-2028;OSVDB-93037
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux_x86/remote/26737.pl

reference_url	https://security.gentoo.org/glsa/201310-04
reference_id	GLSA-201310-04
reference_type
scores
url	https://security.gentoo.org/glsa/201310-04

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2013-2028

risk_score 7.6

exploitability 2.0

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r8u3-ce91-jyhs

url VCID-rfee-d1ak-fkdk

vulnerability_id VCID-rfee-d1ak-fkdk

summary Directory traversal vulnerability in naxsi-ui/nx_extract.py in the Naxsi module before 0.46-1 for Nginx allows local users to read arbitrary files via unspecified vectors.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-3380

reference_id

reference_type

scores

value	0.0011
scoring_system	epss
scoring_elements	0.29001
published_at	2026-06-11T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29204
published_at	2026-06-12T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29223
published_at	2026-06-13T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29212
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-3380

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3380
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3380

fixed_packages

url	pkg:deb/debian/nginx@1.2.1-2?distro=trixie
purl	pkg:deb/debian/nginx@1.2.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.2.1-2%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2012-3380

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rfee-d1ak-fkdk

url VCID-rktn-pug5-fqbp

vulnerability_id VCID-rktn-pug5-fqbp

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24989.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24989.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-24989

reference_id

reference_type

scores

value	0.00831
scoring_system	epss
scoring_elements	0.75086
published_at	2026-06-14T12:55:00Z

value	0.00831
scoring_system	epss
scoring_elements	0.75006
published_at	2026-06-11T12:55:00Z

value	0.00831
scoring_system	epss
scoring_elements	0.75076
published_at	2026-06-12T12:55:00Z

value	0.00831
scoring_system	epss
scoring_elements	0.75089
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-24989

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://mailman.nginx.org/pipermail/nginx-announce/2024/NW6MNW34VZ6HDIHH5YFBIJYZJN7FGNAV.html
reference_id
reference_type
scores
url	https://mailman.nginx.org/pipermail/nginx-announce/2024/NW6MNW34VZ6HDIHH5YFBIJYZJN7FGNAV.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2264290
reference_id	2264290
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2264290

reference_url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T15:42:02Z/

url

http://www.openwall.com/lists/oss-security/2024/05/30/4

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-24989
reference_id	CVE-2024-24989
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-24989

reference_url	https://security.gentoo.org/glsa/202409-32
reference_id	GLSA-202409-32
reference_type
scores
url	https://security.gentoo.org/glsa/202409-32

reference_url

https://my.f5.com/manage/s/article/K000138444

reference_id

K000138444

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T15:42:02Z/

url

https://my.f5.com/manage/s/article/K000138444

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.0-1?distro=trixie
purl	pkg:deb/debian/nginx@1.26.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.0-1%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2024-24989

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rktn-pug5-fqbp

url VCID-rxn6-cr24-gqdq

vulnerability_id VCID-rxn6-cr24-gqdq

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20372.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20372.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-20372

reference_id

reference_type

scores

value	0.69569
scoring_system	epss
scoring_elements	0.98679
published_at	2026-06-11T12:55:00Z

value	0.69569
scoring_system	epss
scoring_elements	0.98683
published_at	2026-06-12T12:55:00Z

value	0.69569
scoring_system	epss
scoring_elements	0.98684
published_at	2026-06-13T12:55:00Z

value	0.69569
scoring_system	epss
scoring_elements	0.98685
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-20372

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20372
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20372

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1790277
reference_id	1790277
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1790277

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=948579
reference_id	948579
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=948579

reference_url	https://access.redhat.com/errata/RHSA-2020:2817
reference_id	RHSA-2020:2817
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2817

reference_url	https://access.redhat.com/errata/RHSA-2020:5495
reference_id	RHSA-2020:5495
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5495

reference_url	https://access.redhat.com/errata/RHSA-2021:0778
reference_id	RHSA-2021:0778
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0778

reference_url	https://access.redhat.com/errata/RHSA-2021:0779
reference_id	RHSA-2021:0779
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0779

reference_url	https://usn.ubuntu.com/4235-1/
reference_id	USN-4235-1
reference_type
scores
url	https://usn.ubuntu.com/4235-1/

reference_url	https://usn.ubuntu.com/4235-2/
reference_id	USN-4235-2
reference_type
scores
url	https://usn.ubuntu.com/4235-2/

fixed_packages

url	pkg:deb/debian/nginx@1.16.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.16.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.16.1-3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2019-20372

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rxn6-cr24-gqdq

url VCID-s14f-secu-mkgr

vulnerability_id VCID-s14f-secu-mkgr

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28755.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28755.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-28755

reference_id

reference_type

scores

value	0.00012
scoring_system	epss
scoring_elements	0.01944
published_at	2026-06-11T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01946
published_at	2026-06-12T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01947
published_at	2026-06-13T12:55:00Z

value	0.00012
scoring_system	epss
scoring_elements	0.01956
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-28755

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://my.f5.com/manage/s/article/K000160368
reference_id
reference_type
scores
url	https://my.f5.com/manage/s/article/K000160368

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2450779
reference_id	2450779
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2450779

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-28755
reference_id	CVE-2026-28755
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-28755

reference_url	https://access.redhat.com/errata/RHSA-2026:8346
reference_id	RHSA-2026:8346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8346

reference_url	https://usn.ubuntu.com/8210-1/
reference_id	USN-8210-1
reference_type
scores
url	https://usn.ubuntu.com/8210-1/

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.28.3-2?distro=trixie
purl	pkg:deb/debian/nginx@1.28.3-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.28.3-2%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-28755

risk_score 2.5

exploitability 0.5

weighted_severity 4.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s14f-secu-mkgr

url VCID-s5kd-tf6c-3kdg

vulnerability_id VCID-s5kd-tf6c-3kdg

summary The SPDY implementation in the ngx_http_spdy_module module in nginx 1.5.10 before 1.5.11, when running on a 32-bit platform, allows remote attackers to execute arbitrary code via a crafted request.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0088.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0088.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-0088

reference_id

reference_type

scores

value	0.02607
scoring_system	epss
scoring_elements	0.85962
published_at	2026-06-11T12:55:00Z

value	0.02607
scoring_system	epss
scoring_elements	0.86012
published_at	2026-06-12T12:55:00Z

value	0.02607
scoring_system	epss
scoring_elements	0.86022
published_at	2026-06-13T12:55:00Z

value	0.02607
scoring_system	epss
scoring_elements	0.86015
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-0088

reference_url	https://mailman.nginx.org/pipermail/nginx-announce/2014/000132.html
reference_id
reference_type
scores
url	https://mailman.nginx.org/pipermail/nginx-announce/2014/000132.html

reference_url	https://nginx.org/download/patch.2014.spdy.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2014.spdy.txt

reference_url	https://nginx.org/download/patch.2014.spdy.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2014.spdy.txt.asc

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1072546
reference_id	1072546
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1072546

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2014-0088
reference_id	CVE-2014-0088
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2014-0088

fixed_packages

url	pkg:deb/debian/nginx@0?distro=trixie
purl	pkg:deb/debian/nginx@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2014-0088

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s5kd-tf6c-3kdg

url VCID-t3yw-8rhv-jyer

vulnerability_id VCID-t3yw-8rhv-jyer

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3618.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3618.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3618

reference_id

reference_type

scores

value	0.00615
scoring_system	epss
scoring_elements	0.70494
published_at	2026-06-14T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.70392
published_at	2026-06-11T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.70482
published_at	2026-06-12T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.70496
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3618

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1975623
reference_id	1975623
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1975623

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328
reference_id	991328
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329
reference_id	991329
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331
reference_id	991331
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331

reference_url

https://security.archlinux.org/AVG-2101

reference_id

AVG-2101

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2101

reference_url

https://security.archlinux.org/AVG-2102

reference_id

AVG-2102

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2102

reference_url

https://security.archlinux.org/AVG-2103

reference_id

AVG-2103

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2103

reference_url	https://usn.ubuntu.com/5371-1/
reference_id	USN-5371-1
reference_type
scores
url	https://usn.ubuntu.com/5371-1/

reference_url	https://usn.ubuntu.com/5371-2/
reference_id	USN-5371-2
reference_type
scores
url	https://usn.ubuntu.com/5371-2/

reference_url	https://usn.ubuntu.com/6379-1/
reference_id	USN-6379-1
reference_type
scores
url	https://usn.ubuntu.com/6379-1/

fixed_packages

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.20.2-2?distro=trixie
purl	pkg:deb/debian/nginx@1.20.2-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.20.2-2%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2021-3618

risk_score 3.4

exploitability 0.5

weighted_severity 6.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t3yw-8rhv-jyer

url VCID-t5k1-u8qa-sye1

vulnerability_id VCID-t5k1-u8qa-sye1

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23419.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23419.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-23419

reference_id

reference_type

scores

value	0.02857
scoring_system	epss
scoring_elements	0.86616
published_at	2026-06-14T12:55:00Z

value	0.02857
scoring_system	epss
scoring_elements	0.8656
published_at	2026-06-11T12:55:00Z

value	0.02857
scoring_system	epss
scoring_elements	0.86609
published_at	2026-06-12T12:55:00Z

value	0.02857
scoring_system	epss
scoring_elements	0.86619
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-23419

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23419
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23419

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2025/NYEUJX7NCBCGJGXDFVXNMAAMJDFSE45G.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2025/NYEUJX7NCBCGJGXDFVXNMAAMJDFSE45G.html

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095403
reference_id	1095403
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095403

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2344005
reference_id	2344005
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2344005

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2025-23419
reference_id	CVE-2025-23419
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2025-23419

reference_url

https://my.f5.com/manage/s/article/K000149173

reference_id

K000149173

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-05T18:12:47Z/

url

https://my.f5.com/manage/s/article/K000149173

reference_url	https://access.redhat.com/errata/RHSA-2025:7331
reference_id	RHSA-2025:7331
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7331

reference_url	https://usn.ubuntu.com/7285-1/
reference_id	USN-7285-1
reference_type
scores
url	https://usn.ubuntu.com/7285-1/

reference_url	https://usn.ubuntu.com/7285-2/
reference_id	USN-7285-2
reference_type
scores
url	https://usn.ubuntu.com/7285-2/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-2?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-2%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2025-23419

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t5k1-u8qa-sye1

url VCID-tc96-ebsm-rqdm

vulnerability_id VCID-tc96-ebsm-rqdm

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40701.json

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40701.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-40701

reference_id

reference_type

scores

value	0.00044
scoring_system	epss
scoring_elements	0.1393
published_at	2026-06-11T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.14044
published_at	2026-06-13T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.14047
published_at	2026-06-12T12:55:00Z

value	0.00046
scoring_system	epss
scoring_elements	0.14571
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-40701

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40701
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40701

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2477076
reference_id	2477076
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2477076

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-40701
reference_id	CVE-2026-40701
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-40701

reference_url

https://my.f5.com/manage/s/article/K000161021

reference_id

K000161021

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:55:34Z/

url

https://my.f5.com/manage/s/article/K000161021

reference_url	https://usn.ubuntu.com/8354-1/
reference_id	USN-8354-1
reference_type
scores
url	https://usn.ubuntu.com/8354-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u7%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u5?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u5%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.0-4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-40701

risk_score 2.1

exploitability 0.5

weighted_severity 4.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tc96-ebsm-rqdm

url VCID-tp4y-nqud-9bgb

vulnerability_id VCID-tp4y-nqud-9bgb

summary

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-4450.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-4450.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-4450

reference_id

reference_type

scores

value	0.03589
scoring_system	epss
scoring_elements	0.88026
published_at	2026-06-11T12:55:00Z

value	0.03589
scoring_system	epss
scoring_elements	0.88067
published_at	2026-06-12T12:55:00Z

value	0.03589
scoring_system	epss
scoring_elements	0.88073
published_at	2026-06-13T12:55:00Z

value	0.03589
scoring_system	epss
scoring_elements	0.88071
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-4450

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4450
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4450

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2016/000179.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2016/000179.html

reference_url	https://nginx.org/download/patch.2016.write2.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2016.write2.txt

reference_url	https://nginx.org/download/patch.2016.write2.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2016.write2.txt.asc

reference_url	https://nginx.org/download/patch.2016.write.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2016.write.txt

reference_url	https://nginx.org/download/patch.2016.write.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2016.write.txt.asc

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1341462
reference_id	1341462
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1341462

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825960
reference_id	825960
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825960

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2016-4450
reference_id	CVE-2016-4450
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2016-4450

reference_url	https://security.gentoo.org/glsa/201606-06
reference_id	GLSA-201606-06
reference_type
scores
url	https://security.gentoo.org/glsa/201606-06

reference_url	https://access.redhat.com/errata/RHSA-2016:1425
reference_id	RHSA-2016:1425
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1425

reference_url	https://usn.ubuntu.com/2991-1/
reference_id	USN-2991-1
reference_type
scores
url	https://usn.ubuntu.com/2991-1/

fixed_packages

url	pkg:deb/debian/nginx@1.10.1-1?distro=trixie
purl	pkg:deb/debian/nginx@1.10.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.10.1-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2016-4450

risk_score 1.8

exploitability 0.5

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tp4y-nqud-9bgb

url VCID-tt59-r39f-jubk

vulnerability_id VCID-tt59-r39f-jubk

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42946.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42946.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-42946

reference_id

reference_type

scores

value	0.0007
scoring_system	epss
scoring_elements	0.21698
published_at	2026-06-11T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21898
published_at	2026-06-13T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21886
published_at	2026-06-12T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22375
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-42946

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42946
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42946

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2477132
reference_id	2477132
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2477132

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-42946
reference_id	CVE-2026-42946
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-42946

reference_url

https://my.f5.com/manage/s/article/K000161027

reference_id

K000161027

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L

value	8.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:55:04Z/

url

https://my.f5.com/manage/s/article/K000161027

reference_url	https://usn.ubuntu.com/8354-1/
reference_id	USN-8354-1
reference_type
scores
url	https://usn.ubuntu.com/8354-1/

reference_url	https://usn.ubuntu.com/8375-1/
reference_id	USN-8375-1
reference_type
scores
url	https://usn.ubuntu.com/8375-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u6%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u8?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u8?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u6?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.0-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.0-4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2026-42946

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tt59-r39f-jubk

url VCID-vvzb-u4yd-fueg

vulnerability_id VCID-vvzb-u4yd-fueg

summary

references

reference_url

https://access.redhat.com/errata/RHSA-2009:1579

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2009:1579

reference_url

https://access.redhat.com/errata/RHSA-2009:1580

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2009:1580

reference_url

https://access.redhat.com/errata/RHSA-2009:1694

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2009:1694

reference_url

https://access.redhat.com/errata/RHSA-2010:0011

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0011

reference_url

https://access.redhat.com/errata/RHSA-2010:0119

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0119

reference_url

https://access.redhat.com/errata/RHSA-2010:0130

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0130

reference_url

https://access.redhat.com/errata/RHSA-2010:0155

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0155

reference_url

https://access.redhat.com/errata/RHSA-2010:0162

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0162

reference_url

https://access.redhat.com/errata/RHSA-2010:0163

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0163

reference_url

https://access.redhat.com/errata/RHSA-2010:0164

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0164

reference_url

https://access.redhat.com/errata/RHSA-2010:0165

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0165

reference_url

https://access.redhat.com/errata/RHSA-2010:0166

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0166

reference_url

https://access.redhat.com/errata/RHSA-2010:0167

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0167

reference_url

https://access.redhat.com/errata/RHSA-2010:0337

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0337

reference_url

https://access.redhat.com/errata/RHSA-2010:0338

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0338

reference_url

https://access.redhat.com/errata/RHSA-2010:0339

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0339

reference_url

https://access.redhat.com/errata/RHSA-2010:0408

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0408

reference_url

https://access.redhat.com/errata/RHSA-2010:0440

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0440

reference_url

https://access.redhat.com/errata/RHSA-2010:0768

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0768

reference_url

https://access.redhat.com/errata/RHSA-2010:0770

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0770

reference_url

https://access.redhat.com/errata/RHSA-2010:0786

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0786

reference_url

https://access.redhat.com/errata/RHSA-2010:0807

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0807

reference_url

https://access.redhat.com/errata/RHSA-2010:0865

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0865

reference_url

https://access.redhat.com/errata/RHSA-2010:0986

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0986

reference_url

https://access.redhat.com/errata/RHSA-2010:0987

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0987

reference_url

https://access.redhat.com/errata/RHSA-2011:0880

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2011:0880

reference_url

https://access.redhat.com/errata/RHSA-2015:1591

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2015:1591

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3555.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3555.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3555

reference_id

reference_type

scores

value	0.03741
scoring_system	epss
scoring_elements	0.88273
published_at	2026-06-11T12:55:00Z

value	0.03741
scoring_system	epss
scoring_elements	0.88312
published_at	2026-06-12T12:55:00Z

value	0.03741
scoring_system	epss
scoring_elements	0.88318
published_at	2026-06-13T12:55:00Z

value	0.04326
scoring_system	epss
scoring_elements	0.89196
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3555

reference_url

https://bz.apache.org/bugzilla/show_bug.cgi?id=50325

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://bz.apache.org/bugzilla/show_bug.cgi?id=50325

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4929
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4929

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566

reference_url

https://github.com/apache/tomcat

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat55/commit/359c7ee17f5759cc99988e1cc9e971fe4a6ffad5
reference_id
reference_type
scores
url	https://github.com/apache/tomcat55/commit/359c7ee17f5759cc99988e1cc9e971fe4a6ffad5

reference_url

https://github.com/apache/tomcat/commit/14e4efd925da58b9fa63f20969fb7349b8a9c30d

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/14e4efd925da58b9fa63f20969fb7349b8a9c30d

reference_url

https://github.com/apache/tomcat/commit/2d4ca03acc27cc883c404d1745d92f983b6fada3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/2d4ca03acc27cc883c404d1745d92f983b6fada3

reference_url

https://github.com/apache/tomcat/commit/30af3f5630542a2340781f66553e734a6fd69701

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/30af3f5630542a2340781f66553e734a6fd69701

reference_url

https://github.com/apache/tomcat/commit/328a523cbb2a2d4cd55283180614d4e03e2f8f02

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/328a523cbb2a2d4cd55283180614d4e03e2f8f02

reference_url

https://github.com/apache/tomcat/commit/3d315ac9dfaa2c03b4df82938d78bf5b755766b3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/3d315ac9dfaa2c03b4df82938d78bf5b755766b3

reference_url

https://github.com/apache/tomcat/commit/56f67141e82e16f68a860c3af9b7342da35cbe7d

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/56f67141e82e16f68a860c3af9b7342da35cbe7d

reference_url

https://github.com/apache/tomcat/commit/b4e9488629bf03b4b65abf335e536e85386d1366

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/b4e9488629bf03b4b65abf335e536e85386d1366

reference_url

https://github.com/apache/tomcat/commit/df9633116b5fec8f47f1f008fb89a6e9d5895cd0

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/df9633116b5fec8f47f1f008fb89a6e9d5895cd0

reference_url	https://nginx.org/download/patch.cve-2009-3555.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.cve-2009-3555.txt

reference_url	https://nginx.org/download/patch.cve-2009-3555.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.cve-2009-3555.txt.asc

reference_url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:10088

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:10088

reference_url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:11578

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:11578

reference_url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:11617

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:11617

reference_url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:7315

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:7315

reference_url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:7478

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:7478

reference_url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:7973

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:7973

reference_url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:8366

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:8366

reference_url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:8535

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:8535

reference_url

https://tomcat.apache.org/security-5.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-5.html

reference_url

https://tomcat.apache.org/security-6.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-6.html

reference_url

https://tomcat.apache.org/security-7.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-7.html

reference_url

https://www.exploit-db.com/exploits/10579

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.exploit-db.com/exploits/10579

reference_url

http://www.opera.com/docs/changelogs/unix/1060

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.opera.com/docs/changelogs/unix/1060

reference_url

http://www.opera.com/support/search/view/944

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.opera.com/support/search/view/944

reference_url

http://www.vupen.com/english/advisories/2011/0032

reference_id

0032

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2011/0032

reference_url

http://www.vupen.com/english/advisories/2011/0033

reference_id

0033

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2011/0033

reference_url

http://www.vupen.com/english/advisories/2010/0086

reference_id

0086

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/0086

reference_url

http://www.vupen.com/english/advisories/2011/0086

reference_id

0086

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2011/0086

reference_url

http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html

reference_id

0120.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html

reference_url

http://www.vupen.com/english/advisories/2010/0173

reference_id

0173

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/0173

reference_url

http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html

reference_id

039561.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html

reference_url

http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html

reference_id

039957.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html

reference_url

http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html

reference_id

040652.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html

reference_url

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html

reference_id

049455.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html

reference_url

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html

reference_id

049528.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html

reference_url

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html

reference_id

049702.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html

reference_url

http://www.vupen.com/english/advisories/2010/0748

reference_id

0748

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/0748

reference_url

http://www.vupen.com/english/advisories/2010/0848

reference_id

0848

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/0848

reference_url

http://www.vupen.com/english/advisories/2010/0916

reference_id

0916

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/0916

reference_url

http://www.vupen.com/english/advisories/2010/0933

reference_id

0933

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/0933

reference_url

http://www.vupen.com/english/advisories/2010/0982

reference_id

0982

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/0982

reference_url

http://www.vupen.com/english/advisories/2010/0994

reference_id

0994

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/0994

reference_url

http://www.openwall.com/lists/oss-security/2009/11/20/1

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.openwall.com/lists/oss-security/2009/11/20/1

reference_url

http://www.openwall.com/lists/oss-security/2009/11/23/10

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.openwall.com/lists/oss-security/2009/11/23/10

reference_url

http://support.avaya.com/css/P8/documents/100070150

reference_id

100070150

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.avaya.com/css/P8/documents/100070150

reference_url

http://support.avaya.com/css/P8/documents/100081611

reference_id

100081611

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.avaya.com/css/P8/documents/100081611

reference_url

http://support.avaya.com/css/P8/documents/100114315

reference_id

100114315

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.avaya.com/css/P8/documents/100114315

reference_url

http://support.avaya.com/css/P8/documents/100114327

reference_id

100114327

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.avaya.com/css/P8/documents/100114327

reference_url

http://www.vupen.com/english/advisories/2010/1054

reference_id

1054

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/1054

reference_url

http://www.opera.com/docs/changelogs/unix/1060/

reference_id

1060

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.opera.com/docs/changelogs/unix/1060/

reference_url

http://www.vupen.com/english/advisories/2010/1107

reference_id

1107

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/1107

reference_url

http://www.vupen.com/english/advisories/2010/1191

reference_id

1191

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/1191

reference_url

http://www.kb.cert.org/vuls/id/120541

reference_id

120541

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.kb.cert.org/vuls/id/120541

reference_url

http://www.betanews.com/article/1257452450

reference_id

1257452450

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.betanews.com/article/1257452450

reference_url

http://www.vupen.com/english/advisories/2010/1350

reference_id

1350

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/1350

reference_url

http://seclists.org/fulldisclosure/2009/Nov/139

reference_id

139

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://seclists.org/fulldisclosure/2009/Nov/139

reference_url

http://www.vupen.com/english/advisories/2010/1639

reference_id

1639

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/1639

reference_url

http://www.vupen.com/english/advisories/2010/1673

reference_id

1673

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/1673

reference_url

http://www.vupen.com/english/advisories/2010/1793

reference_id

1793

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/1793

reference_url

http://www.vupen.com/english/advisories/2010/2010

reference_id

2010

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/2010

reference_url

http://www.vupen.com/english/advisories/2010/2745

reference_id

2745

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/2745

reference_url

http://www.openwall.com/lists/oss-security/2009/11/05/3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.openwall.com/lists/oss-security/2009/11/05/3

reference_url

http://www.openwall.com/lists/oss-security/2009/11/06/3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.openwall.com/lists/oss-security/2009/11/06/3

reference_url

http://www.openwall.com/lists/oss-security/2009/11/07/3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.openwall.com/lists/oss-security/2009/11/07/3

reference_url

http://www.vupen.com/english/advisories/2010/3069

reference_id

3069

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/3069

100

reference_url

http://www.vupen.com/english/advisories/2010/3086

reference_id

3086

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/3086

101

reference_url

http://www.vupen.com/english/advisories/2010/3126

reference_id

3126

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2010/3126

102

reference_url

http://www.vupen.com/english/advisories/2009/3164

reference_id

3164

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3164

103

reference_url

http://www.vupen.com/english/advisories/2009/3165

reference_id

3165

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3165

104

reference_url

http://www.vupen.com/english/advisories/2009/3205

reference_id

3205

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3205

105

reference_url

http://www.vupen.com/english/advisories/2009/3220

reference_id

3220

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3220

106

reference_url

http://www.vupen.com/english/advisories/2009/3310

reference_id

3310

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3310

107

reference_url

http://www.vupen.com/english/advisories/2009/3313

reference_id

3313

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3313

108

reference_url

http://www.vupen.com/english/advisories/2009/3353

reference_id

3353

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3353

109

reference_url

http://www.vupen.com/english/advisories/2009/3354

reference_id

3354

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3354

110

reference_url

http://www.vupen.com/english/advisories/2009/3484

reference_id

3484

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3484

111

reference_url

http://www.vupen.com/english/advisories/2009/3521

reference_id

3521

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3521

112

reference_url

http://www.vupen.com/english/advisories/2009/3587

reference_id

3587

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vupen.com/english/advisories/2009/3587

113

reference_url

http://www.securityfocus.com/bid/36935

reference_id

36935

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securityfocus.com/bid/36935

114

reference_url

http://secunia.com/advisories/37291

reference_id

37291

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37291

115

reference_url

http://secunia.com/advisories/37292

reference_id

37292

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37292

116

reference_url

http://secunia.com/advisories/37320

reference_id

37320

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37320

117

reference_url

http://secunia.com/advisories/37383

reference_id

37383

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37383

118

reference_url

http://secunia.com/advisories/37399

reference_id

37399

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37399

119

reference_url

http://secunia.com/advisories/37453

reference_id

37453

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37453

120

reference_url

http://secunia.com/advisories/37501

reference_id

37501

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37501

121

reference_url

http://secunia.com/advisories/37504

reference_id

37504

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37504

122

reference_url

http://secunia.com/advisories/37604

reference_id

37604

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37604

123

reference_url

http://secunia.com/advisories/37640

reference_id

37640

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37640

124

reference_url

http://secunia.com/advisories/37656

reference_id

37656

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37656

125

reference_url

http://secunia.com/advisories/37675

reference_id

37675

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37675

126

reference_url

http://secunia.com/advisories/37859

reference_id

37859

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/37859

127

reference_url

http://secunia.com/advisories/38003

reference_id

38003

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/38003

128

reference_url

http://secunia.com/advisories/38020

reference_id

38020

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/38020

129

reference_url

http://secunia.com/advisories/38056

reference_id

38056

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/38056

130

reference_url

http://secunia.com/advisories/38241

reference_id

38241

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/38241

131

reference_url

http://secunia.com/advisories/38484

reference_id

38484

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/38484

132

reference_url

http://secunia.com/advisories/38687

reference_id

38687

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/38687

133

reference_url

http://secunia.com/advisories/38781

reference_id

38781

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/38781

134

reference_url

http://secunia.com/advisories/39127

reference_id

39127

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39127

135

reference_url

http://secunia.com/advisories/39136

reference_id

39136

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39136

136

reference_url

http://secunia.com/advisories/39242

reference_id

39242

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39242

137

reference_url

http://secunia.com/advisories/39243

reference_id

39243

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39243

138

reference_url

http://secunia.com/advisories/39278

reference_id

39278

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39278

139

reference_url

http://secunia.com/advisories/39292

reference_id

39292

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39292

140

reference_url

http://secunia.com/advisories/39317

reference_id

39317

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39317

141

reference_url

http://secunia.com/advisories/39461

reference_id

39461

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39461

142

reference_url

http://secunia.com/advisories/39500

reference_id

39500

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39500

143

reference_url

http://secunia.com/advisories/39628

reference_id

39628

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39628

144

reference_url

http://secunia.com/advisories/39632

reference_id

39632

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39632

145

reference_url

http://secunia.com/advisories/39713

reference_id

39713

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39713

146

reference_url

http://secunia.com/advisories/39819

reference_id

39819

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/39819

147

reference_url

http://secunia.com/advisories/40070

reference_id

40070

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/40070

148

reference_url

http://secunia.com/advisories/40545

reference_id

40545

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/40545

149

reference_url

http://secunia.com/advisories/40747

reference_id

40747

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/40747

150

reference_url

http://secunia.com/advisories/40866

reference_id

40866

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/40866

151

reference_url

http://secunia.com/advisories/41480

reference_id

41480

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/41480

152

reference_url

http://secunia.com/advisories/41490

reference_id

41490

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/41490

153

reference_url

http://secunia.com/advisories/41818

reference_id

41818

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/41818

154

reference_url

http://secunia.com/advisories/41967

reference_id

41967

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/41967

155

reference_url

http://secunia.com/advisories/41972

reference_id

41972

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/41972

156

reference_url

http://secunia.com/advisories/42377

reference_id

42377

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/42377

157

reference_url

http://secunia.com/advisories/42379

reference_id

42379

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/42379

158

reference_url

http://secunia.com/advisories/42467

reference_id

42467

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/42467

159

reference_url

http://secunia.com/advisories/42724

reference_id

42724

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/42724

160

reference_url

http://secunia.com/advisories/42733

reference_id

42733

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/42733

161

reference_url

http://secunia.com/advisories/42808

reference_id

42808

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/42808

162

reference_url

http://secunia.com/advisories/42811

reference_id

42811

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/42811

163

reference_url

http://secunia.com/advisories/42816

reference_id

42816

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/42816

164

reference_url

http://secunia.com/advisories/43308

reference_id

43308

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/43308

165

reference_url

http://secunia.com/advisories/44183

reference_id

44183

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/44183

166

reference_url

http://secunia.com/advisories/44954

reference_id

44954

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/44954

167

reference_url

http://secunia.com/advisories/48577

reference_id

48577

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://secunia.com/advisories/48577

168

reference_url

http://www.openwall.com/lists/oss-security/2009/11/05/5

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.openwall.com/lists/oss-security/2009/11/05/5

169

reference_url

http://www.securityfocus.com/archive/1/522176

reference_id

522176

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securityfocus.com/archive/1/522176

170

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/54158

reference_id

54158

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/54158

171

reference_url

http://osvdb.org/60521

reference_id

60521

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://osvdb.org/60521

172

reference_url

http://osvdb.org/60972

reference_id

60972

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://osvdb.org/60972

173

reference_url

http://osvdb.org/62210

reference_id

62210

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://osvdb.org/62210

174

reference_url

http://osvdb.org/65202

reference_id

65202

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://osvdb.org/65202

175

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=765649
reference_id	765649
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=765649

176

reference_url

http://www.opera.com/support/search/view/944/

reference_id

944

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.opera.com/support/search/view/944/

177

reference_url

http://www.mandriva.com/security/advisories?name=MDVSA-2010:076

reference_id

advisories?name=MDVSA-2010:076

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.mandriva.com/security/advisories?name=MDVSA-2010:076

178

reference_url

http://www.mandriva.com/security/advisories?name=MDVSA-2010:084

reference_id

advisories?name=MDVSA-2010:084

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.mandriva.com/security/advisories?name=MDVSA-2010:084

179

reference_url

http://www.mandriva.com/security/advisories?name=MDVSA-2010:089

reference_id

advisories?name=MDVSA-2010:089

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.mandriva.com/security/advisories?name=MDVSA-2010:089

180

reference_url

http://wiki.rpath.com/Advisories:rPSA-2009-0155

reference_id

Advisories:rPSA-2009-0155

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://wiki.rpath.com/Advisories:rPSA-2009-0155

181

reference_url

http://www.arubanetworks.com/support/alerts/aid-020810.txt

reference_id

aid-020810.txt

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.arubanetworks.com/support/alerts/aid-020810.txt

182

reference_url

https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E

reference_id

ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E

183

reference_url

http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html

reference_id

changelog-1.1.x.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html

184

reference_url

http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html

reference_id

cpuapr2011-301950.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html

185

reference_url

http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html

reference_id

cpuoct2010-175626.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html

186

reference_url

http://support.citrix.com/article/CTX123359

reference_id

CTX123359

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.citrix.com/article/CTX123359

187

reference_url

https://access.redhat.com/security/cve/CVE-2009-3555

reference_id

CVE-2009-3555

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2009-3555

188

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/10579.py
reference_id	CVE-2009-3555
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/10579.py

189

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2009-3555

reference_id

CVE-2009-3555

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2009-3555

190

reference_url

http://www.openoffice.org/security/cves/CVE-2009-3555.html

reference_id

CVE-2009-3555.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.openoffice.org/security/cves/CVE-2009-3555.html

191

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/10071.txt
reference_id	CVE-2009-3555;OSVDB-59970
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/10071.txt

192

reference_url	https://www.securityfocus.com/bid/35888/info
reference_id	CVE-2009-3555;OSVDB-59970
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/35888/info

193

reference_url

http://kbase.redhat.com/faq/docs/DOC-20491

reference_id

DOC-20491

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://kbase.redhat.com/faq/docs/DOC-20491

194

reference_url

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

reference_id

docDisplay?docId=emr_na-c05150888

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

195

reference_url

http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751

reference_id

docDisplay.do?docId=emr_na-c02273751

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751

196

reference_url

http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995

reference_id

docDisplay.do?docId=emr_na-c02512995

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995

197

reference_url

http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1

reference_id

document.do?assetkey=1-26-273350-1

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1

198

reference_url

http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1

reference_id

document.do?assetkey=1-66-273029-1

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1

199

reference_url

http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1

reference_id

document.do?assetkey=1-66-274990-1

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1

200

reference_url

http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1

reference_id

document.do?assetkey=1-77-1021653.1-1

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1

201

reference_url

http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1

reference_id

document.do?assetkey=1-77-1021752.1-1

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1

202

reference_url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686

reference_id

Document.jsp?objectID=c01945686

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686

203

reference_url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041

reference_id

Document.jsp?objectID=c02436041

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041

204

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848

reference_id

docview.wss?uid=swg1IC67848

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848

205

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054

reference_id

docview.wss?uid=swg1IC68054

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054

206

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055

reference_id

docview.wss?uid=swg1IC68055

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055

207

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247

reference_id

docview.wss?uid=swg1PM12247

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247

208

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg21426108

reference_id

docview.wss?uid=swg21426108

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www-01.ibm.com/support/docview.wss?uid=swg21426108

209

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg21432298

reference_id

docview.wss?uid=swg21432298

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www-01.ibm.com/support/docview.wss?uid=swg21432298

210

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg24006386

reference_id

docview.wss?uid=swg24006386

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www-01.ibm.com/support/docview.wss?uid=swg24006386

211

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg24025312

reference_id

docview.wss?uid=swg24025312

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www-01.ibm.com/support/docview.wss?uid=swg24025312

212

reference_url

https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt

reference_id

draft-rescorla-tls-renegotiate.txt

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt

213

reference_url

http://www.debian.org/security/2009/dsa-1934

reference_id

dsa-1934

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.debian.org/security/2009/dsa-1934

214

reference_url

http://www.debian.org/security/2011/dsa-2141

reference_id

dsa-2141

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.debian.org/security/2011/dsa-2141

215

reference_url

http://www.debian.org/security/2015/dsa-3253

reference_id

dsa-3253

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.debian.org/security/2015/dsa-3253

216

reference_url

http://openbsd.org/errata45.html#010_openssl

reference_id

errata45.html#010_openssl

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://openbsd.org/errata45.html#010_openssl

217

reference_url

http://openbsd.org/errata46.html#004_openssl

reference_id

errata46.html#004_openssl

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://openbsd.org/errata46.html#004_openssl

218

reference_url

https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E

reference_id

f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E

219

reference_url

https://github.com/advisories/GHSA-f7w7-6pjc-wwm6

reference_id

GHSA-f7w7-6pjc-wwm6

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-f7w7-6pjc-wwm6

220

reference_url	https://security.gentoo.org/glsa/200912-01
reference_id	GLSA-200912-01
reference_type
scores
url	https://security.gentoo.org/glsa/200912-01

221

reference_url

http://security.gentoo.org/glsa/glsa-200912-01.xml

reference_id

glsa-200912-01.xml

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://security.gentoo.org/glsa/glsa-200912-01.xml

222

reference_url	https://security.gentoo.org/glsa/201006-18
reference_id	GLSA-201006-18
reference_type
scores
url	https://security.gentoo.org/glsa/201006-18

223

reference_url	https://security.gentoo.org/glsa/201110-05
reference_id	GLSA-201110-05
reference_type
scores
url	https://security.gentoo.org/glsa/201110-05

224

reference_url	https://security.gentoo.org/glsa/201203-22
reference_id	GLSA-201203-22
reference_type
scores
url	https://security.gentoo.org/glsa/201203-22

225

reference_url

http://security.gentoo.org/glsa/glsa-201203-22.xml

reference_id

glsa-201203-22.xml

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://security.gentoo.org/glsa/glsa-201203-22.xml

226

reference_url	https://security.gentoo.org/glsa/201206-18
reference_id	GLSA-201206-18
reference_type
scores
url	https://security.gentoo.org/glsa/201206-18

227

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

228

reference_url	https://security.gentoo.org/glsa/201309-15
reference_id	GLSA-201309-15
reference_type
scores
url	https://security.gentoo.org/glsa/201309-15

229

reference_url	https://security.gentoo.org/glsa/201311-13
reference_id	GLSA-201311-13
reference_type
scores
url	https://security.gentoo.org/glsa/201311-13

230

reference_url	https://security.gentoo.org/glsa/201406-32
reference_id	GLSA-201406-32
reference_type
scores
url	https://security.gentoo.org/glsa/201406-32

231

reference_url

http://security.gentoo.org/glsa/glsa-201406-32.xml

reference_id

glsa-201406-32.xml

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://security.gentoo.org/glsa/glsa-201406-32.xml

232

reference_url

http://support.apple.com/kb/HT4004

reference_id

HT4004

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.apple.com/kb/HT4004

233

reference_url

http://support.apple.com/kb/HT4170

reference_id

HT4170

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.apple.com/kb/HT4170

234

reference_url

http://support.apple.com/kb/HT4171

reference_id

HT4171

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.apple.com/kb/HT4171

235

reference_url

http://securitytracker.com/id?1023148

reference_id

id?1023148

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://securitytracker.com/id?1023148

236

reference_url

http://www.securitytracker.com/id?1023163

reference_id

id?1023163

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023163

237

reference_url

http://www.securitytracker.com/id?1023204

reference_id

id?1023204

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023204

238

reference_url

http://www.securitytracker.com/id?1023205

reference_id

id?1023205

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023205

239

reference_url

http://www.securitytracker.com/id?1023206

reference_id

id?1023206

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023206

240

reference_url

http://www.securitytracker.com/id?1023207

reference_id

id?1023207

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023207

241

reference_url

http://www.securitytracker.com/id?1023208

reference_id

id?1023208

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023208

242

reference_url

http://www.securitytracker.com/id?1023209

reference_id

id?1023209

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023209

243

reference_url

http://www.securitytracker.com/id?1023210

reference_id

id?1023210

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023210

244

reference_url

http://www.securitytracker.com/id?1023211

reference_id

id?1023211

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023211

245

reference_url

http://www.securitytracker.com/id?1023212

reference_id

id?1023212

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023212

246

reference_url

http://www.securitytracker.com/id?1023213

reference_id

id?1023213

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023213

247

reference_url

http://www.securitytracker.com/id?1023214

reference_id

id?1023214

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023214

248

reference_url

http://www.securitytracker.com/id?1023215

reference_id

id?1023215

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023215

249

reference_url

http://www.securitytracker.com/id?1023216

reference_id

id?1023216

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023216

250

reference_url

http://www.securitytracker.com/id?1023217

reference_id

id?1023217

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023217

251

reference_url

http://www.securitytracker.com/id?1023218

reference_id

id?1023218

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023218

252

reference_url

http://www.securitytracker.com/id?1023219

reference_id

id?1023219

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023219

253

reference_url

http://www.securitytracker.com/id?1023224

reference_id

id?1023224

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023224

254

reference_url

http://www.securitytracker.com/id?1023243

reference_id

id?1023243

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023243

255

reference_url

http://www.securitytracker.com/id?1023270

reference_id

id?1023270

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023270

256

reference_url

http://www.securitytracker.com/id?1023271

reference_id

id?1023271

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023271

257

reference_url

http://www.securitytracker.com/id?1023272

reference_id

id?1023272

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023272

258

reference_url

http://www.securitytracker.com/id?1023273

reference_id

id?1023273

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023273

259

reference_url

http://www.securitytracker.com/id?1023274

reference_id

id?1023274

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023274

260

reference_url

http://www.securitytracker.com/id?1023275

reference_id

id?1023275

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023275

261

reference_url

http://www.securitytracker.com/id?1023411

reference_id

id?1023411

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023411

262

reference_url

http://www.securitytracker.com/id?1023426

reference_id

id?1023426

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023426

263

reference_url

http://www.securitytracker.com/id?1023427

reference_id

id?1023427

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023427

264

reference_url

http://www.securitytracker.com/id?1023428

reference_id

id?1023428

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1023428

265

reference_url

http://www.securitytracker.com/id?1024789

reference_id

id?1024789

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securitytracker.com/id?1024789

266

reference_url

http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html

reference_id

index.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html

267

reference_url

https://kb.bluecoat.com/index?page=content&id=SA50

reference_id

index?page=content&id=SA50

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://kb.bluecoat.com/index?page=content&id=SA50

268

reference_url

http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html

reference_id

javacpuoct2010-176258.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html

269

reference_url

http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2

reference_id

?l=apache-httpd-announce&m=125755783724966&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2

270

reference_url

http://marc.info/?l=bugtraq&m=126150535619567&w=2

reference_id

?l=bugtraq&m=126150535619567&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=bugtraq&m=126150535619567&w=2

271

reference_url

http://marc.info/?l=bugtraq&m=127128920008563&w=2

reference_id

?l=bugtraq&m=127128920008563&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=bugtraq&m=127128920008563&w=2

272

reference_url

http://marc.info/?l=bugtraq&m=127419602507642&w=2

reference_id

?l=bugtraq&m=127419602507642&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=bugtraq&m=127419602507642&w=2

273

reference_url

http://marc.info/?l=bugtraq&m=127557596201693&w=2

reference_id

?l=bugtraq&m=127557596201693&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=bugtraq&m=127557596201693&w=2

274

reference_url

http://marc.info/?l=bugtraq&m=130497311408250&w=2

reference_id

?l=bugtraq&m=130497311408250&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=bugtraq&m=130497311408250&w=2

275

reference_url

http://marc.info/?l=bugtraq&m=132077688910227&w=2

reference_id

?l=bugtraq&m=132077688910227&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=bugtraq&m=132077688910227&w=2

276

reference_url

http://marc.info/?l=bugtraq&m=133469267822771&w=2

reference_id

?l=bugtraq&m=133469267822771&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=bugtraq&m=133469267822771&w=2

277

reference_url

http://marc.info/?l=bugtraq&m=134254866602253&w=2

reference_id

?l=bugtraq&m=134254866602253&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=bugtraq&m=134254866602253&w=2

278

reference_url

http://marc.info/?l=bugtraq&m=142660345230545&w=2

reference_id

?l=bugtraq&m=142660345230545&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=bugtraq&m=142660345230545&w=2

279

reference_url

http://marc.info/?l=cryptography&m=125752275331877&w=2

reference_id

?l=cryptography&m=125752275331877&w=2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://marc.info/?l=cryptography&m=125752275331877&w=2

280

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2010-22

reference_id

mfsa2010-22

reference_type

scores

value	low
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2010-22

281

reference_url

http://www.mozilla.org/security/announce/2010/mfsa2010-22.html

reference_id

mfsa2010-22.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.mozilla.org/security/announce/2010/mfsa2010-22.html

282

reference_url

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049

reference_id

ms10-049

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049

283

reference_url

http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html

reference_id

msg00000.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html

284

reference_url

http://lists.apple.com/archives/security-announce/2010//May/msg00001.html

reference_id

msg00001.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.apple.com/archives/security-announce/2010//May/msg00001.html

285

reference_url

http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html

reference_id

msg00001.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html

286

reference_url

http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html

reference_id

msg00001.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html

287

reference_url

http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html

reference_id

msg00001.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html

288

reference_url

http://lists.apple.com/archives/security-announce/2010//May/msg00002.html

reference_id

msg00002.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.apple.com/archives/security-announce/2010//May/msg00002.html

289

reference_url

http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html

reference_id

msg00002.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html

290

reference_url

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html

reference_id

msg00005.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html

291

reference_url

http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

reference_id

msg00006.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

292

reference_url

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

reference_id

msg00006.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

293

reference_url

http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html

reference_id

msg00009.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html

294

reference_url

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html

reference_id

msg00013.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html

295

reference_url

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html

reference_id

msg00014.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html

296

reference_url

http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html

reference_id

msg00029.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html

297

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html

reference_id

msg00428.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html

298

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html

reference_id

msg00442.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html

299

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html

reference_id

msg00449.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html

300

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html

reference_id

msg00634.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html

301

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html

reference_id

msg00645.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html

302

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html

reference_id

msg00944.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html

303

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html

reference_id

msg01020.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html

304

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html

reference_id

msg01029.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html

305

reference_url

http://www.ietf.org/mail-archive/web/tls/current/msg03928.html

reference_id

msg03928.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.ietf.org/mail-archive/web/tls/current/msg03928.html

306

reference_url

http://www.ietf.org/mail-archive/web/tls/current/msg03948.html

reference_id

msg03948.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.ietf.org/mail-archive/web/tls/current/msg03948.html

307

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088

reference_id

oval%3Aorg.mitre.oval%3Adef%3A10088

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088

308

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578

reference_id

oval%3Aorg.mitre.oval%3Adef%3A11578

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578

309

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617

reference_id

oval%3Aorg.mitre.oval%3Adef%3A11617

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617

310

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315

reference_id

oval%3Aorg.mitre.oval%3Adef%3A7315

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315

311

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478

reference_id

oval%3Aorg.mitre.oval%3Adef%3A7478

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478

312

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973

reference_id

oval%3Aorg.mitre.oval%3Adef%3A7973

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973

313

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366

reference_id

oval%3Aorg.mitre.oval%3Adef%3A8366

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366

314

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535

reference_id

oval%3Aorg.mitre.oval%3Adef%3A8535

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535

315

reference_url

http://www.links.org/?p=780

reference_id

?p=780

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.links.org/?p=780

316

reference_url

http://www.links.org/?p=786

reference_id

?p=786

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.links.org/?p=786

317

reference_url

http://www.links.org/?p=789

reference_id

?p=789

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.links.org/?p=789

318

reference_url

http://extendedsubset.com/?p=8

reference_id

?p=8

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://extendedsubset.com/?p=8

319

reference_url

http://www.tombom.co.uk/blog/?p=85

reference_id

?p=85

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.tombom.co.uk/blog/?p=85

320

reference_url

http://sysoev.ru/nginx/patch.cve-2009-3555.txt

reference_id

patch.cve-2009-3555.txt

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://sysoev.ru/nginx/patch.cve-2009-3555.txt

321

reference_url

http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html

reference_id

plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html

322

reference_url

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml

reference_id

products_security_advisory09186a0080b01d1d.shtml

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml

323

reference_url

https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E

reference_id

re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E

324

reference_url

http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES

reference_id

RELEASE_NOTES

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES

325

reference_url

http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c

reference_id

RELEASE_NOTES-1.3.2c

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c

326

reference_url

http://www.ingate.com/Relnote.php?ver=481

reference_id

Relnote.php?ver=481

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.ingate.com/Relnote.php?ver=481

327

reference_url

http://extendedsubset.com/Renegotiating_TLS.pdf

reference_id

Renegotiating_TLS.pdf

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://extendedsubset.com/Renegotiating_TLS.pdf

328

reference_url

https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E

reference_id

rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E

329

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0119.html

reference_id

RHSA-2010-0119.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0119.html

330

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0130.html

reference_id

RHSA-2010-0130.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0130.html

331

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0155.html

reference_id

RHSA-2010-0155.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0155.html

332

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0165.html

reference_id

RHSA-2010-0165.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0165.html

333

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0167.html

reference_id

RHSA-2010-0167.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0167.html

334

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0337.html

reference_id

RHSA-2010-0337.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0337.html

335

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0338.html

reference_id

RHSA-2010-0338.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0338.html

336

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0339.html

reference_id

RHSA-2010-0339.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0339.html

337

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0768.html

reference_id

RHSA-2010-0768.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0768.html

338

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0770.html

reference_id

RHSA-2010-0770.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0770.html

339

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0786.html

reference_id

RHSA-2010-0786.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0786.html

340

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0807.html

reference_id

RHSA-2010-0807.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0807.html

341

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0865.html

reference_id

RHSA-2010-0865.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0865.html

342

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0986.html

reference_id

RHSA-2010-0986.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0986.html

343

reference_url

http://www.redhat.com/support/errata/RHSA-2010-0987.html

reference_id

RHSA-2010-0987.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2010-0987.html

344

reference_url

http://www.redhat.com/support/errata/RHSA-2011-0880.html

reference_id

RHSA-2011-0880.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.redhat.com/support/errata/RHSA-2011-0880.html

345

reference_url

http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only

reference_id

search.wss?rs=0&q=PM00675&apar=only

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only

346

reference_url

http://www.openssl.org/news/secadv_20091111.txt

reference_id

secadv_20091111.txt

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.openssl.org/news/secadv_20091111.txt

347

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=526689

reference_id

show_bug.cgi?id=526689

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=526689

348

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=533125

reference_id

show_bug.cgi?id=533125

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=533125

349

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=545755

reference_id

show_bug.cgi?id=545755

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=545755

350

reference_url

https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html

reference_id

sol10737.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html

351

reference_url

http://blogs.iss.net/archive/sslmitmiscsrf.html

reference_id

sslmitmiscsrf.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://blogs.iss.net/archive/sslmitmiscsrf.html

352

reference_url

http://www.us-cert.gov/cas/techalerts/TA10-222A.html

reference_id

TA10-222A.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.us-cert.gov/cas/techalerts/TA10-222A.html

353

reference_url

http://www.us-cert.gov/cas/techalerts/TA10-287A.html

reference_id

TA10-287A.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.us-cert.gov/cas/techalerts/TA10-287A.html

354

reference_url

http://www.securityfocus.com/archive/1/507952/100/0/threaded

reference_id

threaded

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securityfocus.com/archive/1/507952/100/0/threaded

355

reference_url

http://www.securityfocus.com/archive/1/508075/100/0/threaded

reference_id

threaded

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securityfocus.com/archive/1/508075/100/0/threaded

356

reference_url

http://www.securityfocus.com/archive/1/508130/100/0/threaded

reference_id

threaded

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securityfocus.com/archive/1/508130/100/0/threaded

357

reference_url

http://www.securityfocus.com/archive/1/515055/100/0/threaded

reference_id

threaded

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securityfocus.com/archive/1/515055/100/0/threaded

358

reference_url

http://www.securityfocus.com/archive/1/516397/100/0/threaded

reference_id

threaded

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securityfocus.com/archive/1/516397/100/0/threaded

359

reference_url

http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html

reference_id

tls-renegotiation-vulnerability-cve.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html

360

reference_url

http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html

reference_id

tls-sslv3-renegotiation-vulnerability.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html

361

reference_url

http://clicky.me/tlsvuln

reference_id

tlsvuln

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://clicky.me/tlsvuln

362

reference_url

http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html

reference_id

understanding_the_tls_renegoti.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html

363

reference_url	https://usn.ubuntu.com/1010-1/
reference_id	USN-1010-1
reference_type
scores
url	https://usn.ubuntu.com/1010-1/

364

reference_url

http://www.ubuntu.com/usn/USN-1010-1

reference_id

USN-1010-1

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.ubuntu.com/usn/USN-1010-1

365

reference_url	https://usn.ubuntu.com/860-1/
reference_id	USN-860-1
reference_type
scores
url	https://usn.ubuntu.com/860-1/

366

reference_url

http://ubuntu.com/usn/usn-923-1

reference_id

usn-923-1

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://ubuntu.com/usn/usn-923-1

367

reference_url	https://usn.ubuntu.com/923-1/
reference_id	USN-923-1
reference_type
scores
url	https://usn.ubuntu.com/923-1/

368

reference_url	https://usn.ubuntu.com/927-1/
reference_id	USN-927-1
reference_type
scores
url	https://usn.ubuntu.com/927-1/

369

reference_url

http://www.ubuntu.com/usn/USN-927-1

reference_id

USN-927-1

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.ubuntu.com/usn/USN-927-1

370

reference_url	https://usn.ubuntu.com/927-4/
reference_id	USN-927-4
reference_type
scores
url	https://usn.ubuntu.com/927-4/

371

reference_url

http://www.ubuntu.com/usn/USN-927-4

reference_id

USN-927-4

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.ubuntu.com/usn/USN-927-4

372

reference_url

http://www.ubuntu.com/usn/USN-927-5

reference_id

USN-927-5

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.ubuntu.com/usn/USN-927-5

373

reference_url	https://usn.ubuntu.com/927-6/
reference_id	USN-927-6
reference_type
scores
url	https://usn.ubuntu.com/927-6/

374

reference_url	https://usn.ubuntu.com/990-1/
reference_id	USN-990-1
reference_type
scores
url	https://usn.ubuntu.com/990-1/

375

reference_url	https://usn.ubuntu.com/990-2/
reference_id	USN-990-2
reference_type
scores
url	https://usn.ubuntu.com/990-2/

376

reference_url

http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446

reference_id

viewer.php?l=slackware-security&y=2009&m=slackware-security.597446

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446

377

reference_url

http://www.vmware.com/security/advisories/VMSA-2010-0019.html

reference_id

VMSA-2010-0019.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vmware.com/security/advisories/VMSA-2010-0019.html

378

reference_url

http://www.vmware.com/security/advisories/VMSA-2011-0003.html

reference_id

VMSA-2011-0003.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vmware.com/security/advisories/VMSA-2011-0003.html

379

reference_url

http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html

reference_id

vsp_vc41_u1_rel_notes.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html

380

reference_url

http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during

reference_id

vulnerability_in_tls_protocol_during

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during

381

reference_url

http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released

reference_id

zws_4_3r5_released

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-27T15:38:52Z/

url

http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released

fixed_packages

url	pkg:deb/debian/nginx@0.7.64-1?distro=trixie
purl	pkg:deb/debian/nginx@0.7.64-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@0.7.64-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2009-3555, GHSA-f7w7-6pjc-wwm6, VU#120541

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vvzb-u4yd-fueg

url VCID-vxxv-uxr5-a7cw

vulnerability_id VCID-vxxv-uxr5-a7cw

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41742.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41742.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-41742

reference_id

reference_type

scores

value	0.00086
scoring_system	epss
scoring_elements	0.24772
published_at	2026-06-11T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24988
published_at	2026-06-13T12:55:00Z

value	0.00086
scoring_system	epss
scoring_elements	0.24971
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-41742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41742

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2022/RBRRON6PYBJJM2XIAPQBFBVLR4Q6IHRA.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2022/RBRRON6PYBJJM2XIAPQBFBVLR4Q6IHRA.html

reference_url	https://nginx.org/download/patch.2022.mp4.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2022.mp4.txt

reference_url	https://nginx.org/download/patch.2022.mp4.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2022.mp4.txt.asc

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2141496
reference_id	2141496
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2141496

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPRVYA4FS34VWB4FEFYNAD7Z2LFCJVEI/

reference_id

BPRVYA4FS34VWB4FEFYNAD7Z2LFCJVEI

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:11:21Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPRVYA4FS34VWB4FEFYNAD7Z2LFCJVEI/

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-41742
reference_id	CVE-2022-41742
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-41742

reference_url

reference_id

dsa-5281

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:11:21Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FD6M3PVVKO35WLAA7GLDBS6TEQ26SM64/

reference_url

reference_id

FD6M3PVVKO35WLAA7GLDBS6TEQ26SM64

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:11:21Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FD6M3PVVKO35WLAA7GLDBS6TEQ26SM64/

reference_url

https://support.f5.com/csp/article/K28112382

reference_id

K28112382

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:11:21Z/

url

https://support.f5.com/csp/article/K28112382

reference_url

https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html

reference_id

msg00031.html

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:11:21Z/

url

https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html

reference_url

https://security.netapp.com/advisory/ntap-20230120-0005/

reference_id

ntap-20230120-0005

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:11:21Z/

url

https://security.netapp.com/advisory/ntap-20230120-0005/

reference_url	https://access.redhat.com/errata/RHSA-2025:7402
reference_id	RHSA-2025:7402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7402

reference_url	https://access.redhat.com/errata/RHSA-2025:7546
reference_id	RHSA-2025:7546
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7546

reference_url	https://access.redhat.com/errata/RHSA-2025:7619
reference_id	RHSA-2025:7619
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7619

reference_url	https://usn.ubuntu.com/5722-1/
reference_id	USN-5722-1
reference_type
scores
url	https://usn.ubuntu.com/5722-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WBORRVG7VVXYOAIAD64ZHES2U2VIUKFQ/

reference_id

WBORRVG7VVXYOAIAD64ZHES2U2VIUKFQ

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T18:11:21Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WBORRVG7VVXYOAIAD64ZHES2U2VIUKFQ/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.1-1?distro=trixie
purl	pkg:deb/debian/nginx@1.22.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2022-41742

risk_score 3.2

exploitability 0.5

weighted_severity 6.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vxxv-uxr5-a7cw

url VCID-xepg-wjtk-qubb

vulnerability_id VCID-xepg-wjtk-qubb

summary restriction bypass

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4547

reference_id

reference_type

scores

value	0.90921
scoring_system	epss
scoring_elements	0.99649
published_at	2026-06-11T12:55:00Z

value	0.90921
scoring_system	epss
scoring_elements	0.99651
published_at	2026-06-14T12:55:00Z

value	0.90921
scoring_system	epss
scoring_elements	0.99652
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4547

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2013/000125.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2013/000125.html

reference_url	https://nginx.org/download/patch.2013.space.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2013.space.txt

reference_url	https://nginx.org/download/patch.2013.space.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2013.space.txt.asc

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=730012
reference_id	730012
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=730012

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2013-4547
reference_id	CVE-2013-4547
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2013-4547

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/38846.txt
reference_id	CVE-2013-4547;OSVDB-100015
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/38846.txt

reference_url	https://www.securityfocus.com/bid/63814/info
reference_id	CVE-2013-4547;OSVDB-100015
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/63814/info

fixed_packages

url	pkg:deb/debian/nginx@1.4.4-1?distro=trixie
purl	pkg:deb/debian/nginx@1.4.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.4.4-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2013-4547

risk_score 7.0

exploitability 2.0

weighted_severity 3.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xepg-wjtk-qubb

url VCID-y41r-x7f6-17cn

vulnerability_id VCID-y41r-x7f6-17cn

summary ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty allows unsafe characters in an argument when using the API to mutate a URI, or a request or response header.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-36309

reference_id

reference_type

scores

value	0.00423
scoring_system	epss
scoring_elements	0.62521
published_at	2026-06-11T12:55:00Z

value	0.00423
scoring_system	epss
scoring_elements	0.62622
published_at	2026-06-12T12:55:00Z

value	0.00423
scoring_system	epss
scoring_elements	0.62634
published_at	2026-06-13T12:55:00Z

value	0.00423
scoring_system	epss
scoring_elements	0.62629
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-36309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36309

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986787
reference_id	986787
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986787

reference_url	https://usn.ubuntu.com/5371-1/
reference_id	USN-5371-1
reference_type
scores
url	https://usn.ubuntu.com/5371-1/

fixed_packages

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u5?distro=trixie
purl	pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.22.0-3?distro=trixie
purl	pkg:deb/debian/nginx@1.22.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.0-3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2020-36309

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y41r-x7f6-17cn

url VCID-yhpa-qj1k-u3eh

vulnerability_id VCID-yhpa-qj1k-u3eh

summary security update

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7529.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7529.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7529

reference_id

reference_type

scores

value	0.91909
scoring_system	epss
scoring_elements	0.99709
published_at	2026-06-11T12:55:00Z

value	0.91909
scoring_system	epss
scoring_elements	0.99711
published_at	2026-06-13T12:55:00Z

value	0.91909
scoring_system	epss
scoring_elements	0.9971
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7529

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7529
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7529

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html

reference_url	https://nginx.org/download/patch.2017.ranges.txt
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2017.ranges.txt

reference_url	https://nginx.org/download/patch.2017.ranges.txt.asc
reference_id
reference_type
scores
url	https://nginx.org/download/patch.2017.ranges.txt.asc

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1468584
reference_id	1468584
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1468584

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868109
reference_id	868109
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868109

reference_url	https://security.archlinux.org/ASA-201707-11
reference_id	ASA-201707-11
reference_type
scores
url	https://security.archlinux.org/ASA-201707-11

reference_url	https://security.archlinux.org/ASA-201707-12
reference_id	ASA-201707-12
reference_type
scores
url	https://security.archlinux.org/ASA-201707-12

reference_url

https://security.archlinux.org/AVG-345

reference_id

AVG-345

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-345

reference_url

https://security.archlinux.org/AVG-346

reference_id

AVG-346

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-346

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2017-7529
reference_id	CVE-2017-7529
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2017-7529

reference_url	https://access.redhat.com/errata/RHSA-2017:2538
reference_id	RHSA-2017:2538
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2538

reference_url	https://usn.ubuntu.com/3352-1/
reference_id	USN-3352-1
reference_type
scores
url	https://usn.ubuntu.com/3352-1/

fixed_packages

url	pkg:deb/debian/nginx@1.13.3-1?distro=trixie
purl	pkg:deb/debian/nginx@1.13.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.13.3-1%3Fdistro=trixie

url pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nginx@1.18.0-6.1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

vulnerability	VCID-peqk-xqma-wbfn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.18.0-6.1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

purl pkg:deb/debian/nginx@1.22.1-9%2Bdeb12u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1weg-s38v-nkh9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.22.1-9%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
purl	pkg:deb/debian/nginx@1.26.3-3%2Bdeb13u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.26.3-3%252Bdeb13u4%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-3%3Fdistro=trixie

url	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
purl	pkg:deb/debian/nginx@1.30.1-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nginx@1.30.1-4%3Fdistro=trixie

aliases CVE-2017-7529

risk_score 10.0

exploitability 2.0

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yhpa-qj1k-u3eh

url VCID-z9dn-65he-ybge

vulnerability_id VCID-z9dn-65he-ybge

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9511.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9511.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-9511

reference_id

reference_type

scores

value	0.13725
scoring_system	epss
scoring_elements	0.94459
published_at	2026-06-14T12:55:00Z

value	0.13725
scoring_system	epss
scoring_elements	0.94433
published_at	2026-06-11T12:55:00Z

value	0.13725
scoring_system	epss
scoring_elements	0.94452
published_at	2026-06-12T12:55:00Z

value	0.13725
scoring_system	epss
scoring_elements	0.94457
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-9511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15604
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15604

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15605
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15605

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15606
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15606

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9516

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html

reference_id

reference_type

scores

value	medium
scoring_system	generic_textual
scoring_elements

url

https://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1741860
reference_id	1741860
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1741860

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934885
reference_id	934885
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934885

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935037
reference_id	935037
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935037

reference_url	https://security.archlinux.org/ASA-201908-12
reference_id	ASA-201908-12
reference_type
scores
url	https://security.archlinux.org/ASA-201908-12

reference_url	https://security.archlinux.org/ASA-201908-13
reference_id	ASA-201908-13
reference_type
scores
url	https://security.archlinux.org/ASA-201908-13

reference_url	https://security.archlinux.org/ASA-201908-17
reference_id	ASA-201908-17
reference_type
scores
url	https://security.archlinux.org/ASA-201908-17

reference_url

reference_id

AVG-1022

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-1023

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-1024

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url