Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-uqng-7wbx-qydv
SummaryGhostRace: Speculative Race Conditions
Aliases
0
alias CVE-2024-2193
1
alias XSA-453
Fixed_packages
0
url pkg:apk/alpine/xen@4.17.3-r1?arch=aarch64&distroversion=v3.18&reponame=main
purl pkg:apk/alpine/xen@4.17.3-r1?arch=aarch64&distroversion=v3.18&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=aarch64&distroversion=v3.18&reponame=main
1
url pkg:apk/alpine/xen@4.17.3-r1?arch=armhf&distroversion=v3.18&reponame=main
purl pkg:apk/alpine/xen@4.17.3-r1?arch=armhf&distroversion=v3.18&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=armhf&distroversion=v3.18&reponame=main
2
url pkg:apk/alpine/xen@4.17.3-r1?arch=armv7&distroversion=v3.18&reponame=main
purl pkg:apk/alpine/xen@4.17.3-r1?arch=armv7&distroversion=v3.18&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=armv7&distroversion=v3.18&reponame=main
3
url pkg:apk/alpine/xen@4.17.3-r1?arch=ppc64le&distroversion=v3.18&reponame=main
purl pkg:apk/alpine/xen@4.17.3-r1?arch=ppc64le&distroversion=v3.18&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=ppc64le&distroversion=v3.18&reponame=main
4
url pkg:apk/alpine/xen@4.17.3-r1?arch=s390x&distroversion=v3.18&reponame=main
purl pkg:apk/alpine/xen@4.17.3-r1?arch=s390x&distroversion=v3.18&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=s390x&distroversion=v3.18&reponame=main
5
url pkg:apk/alpine/xen@4.17.3-r1?arch=x86_64&distroversion=v3.18&reponame=main
purl pkg:apk/alpine/xen@4.17.3-r1?arch=x86_64&distroversion=v3.18&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=x86_64&distroversion=v3.18&reponame=main
6
url pkg:apk/alpine/xen@4.17.3-r1?arch=x86&distroversion=v3.18&reponame=main
purl pkg:apk/alpine/xen@4.17.3-r1?arch=x86&distroversion=v3.18&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=x86&distroversion=v3.18&reponame=main
7
url pkg:apk/alpine/xen@4.18.0-r5?arch=aarch64&distroversion=v3.22&reponame=main
purl pkg:apk/alpine/xen@4.18.0-r5?arch=aarch64&distroversion=v3.22&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=aarch64&distroversion=v3.22&reponame=main
8
url pkg:apk/alpine/xen@4.18.0-r5?arch=armhf&distroversion=v3.22&reponame=main
purl pkg:apk/alpine/xen@4.18.0-r5?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=armhf&distroversion=v3.22&reponame=main
9
url pkg:apk/alpine/xen@4.18.0-r5?arch=armv7&distroversion=v3.22&reponame=main
purl pkg:apk/alpine/xen@4.18.0-r5?arch=armv7&distroversion=v3.22&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=armv7&distroversion=v3.22&reponame=main
10
url pkg:apk/alpine/xen@4.18.0-r5?arch=loongarch64&distroversion=v3.22&reponame=main
purl pkg:apk/alpine/xen@4.18.0-r5?arch=loongarch64&distroversion=v3.22&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=loongarch64&distroversion=v3.22&reponame=main
11
url pkg:apk/alpine/xen@4.18.0-r5?arch=ppc64le&distroversion=v3.22&reponame=main
purl pkg:apk/alpine/xen@4.18.0-r5?arch=ppc64le&distroversion=v3.22&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=ppc64le&distroversion=v3.22&reponame=main
12
url pkg:apk/alpine/xen@4.18.0-r5?arch=riscv64&distroversion=v3.22&reponame=main
purl pkg:apk/alpine/xen@4.18.0-r5?arch=riscv64&distroversion=v3.22&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=riscv64&distroversion=v3.22&reponame=main
13
url pkg:apk/alpine/xen@4.18.0-r5?arch=s390x&distroversion=v3.22&reponame=main
purl pkg:apk/alpine/xen@4.18.0-r5?arch=s390x&distroversion=v3.22&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=s390x&distroversion=v3.22&reponame=main
14
url pkg:apk/alpine/xen@4.18.0-r5?arch=x86_64&distroversion=v3.22&reponame=main
purl pkg:apk/alpine/xen@4.18.0-r5?arch=x86_64&distroversion=v3.22&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=x86_64&distroversion=v3.22&reponame=main
15
url pkg:apk/alpine/xen@4.18.0-r5?arch=x86&distroversion=v3.22&reponame=main
purl pkg:apk/alpine/xen@4.18.0-r5?arch=x86&distroversion=v3.22&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=x86&distroversion=v3.22&reponame=main
16
url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1
purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-95cq-vype-v3at
1
vulnerability VCID-hvns-t4kw-wyag
2
vulnerability VCID-zfd9-kzqs-dkg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1
17
url pkg:deb/debian/xen@4.17.5%2B23-ga4e5191dc0-1?distro=trixie
purl pkg:deb/debian/xen@4.17.5%2B23-ga4e5191dc0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B23-ga4e5191dc0-1%3Fdistro=trixie
18
url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie
purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-95cq-vype-v3at
1
vulnerability VCID-hvns-t4kw-wyag
2
vulnerability VCID-zfd9-kzqs-dkg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie
19
url pkg:deb/debian/xen@4.19.1-1?distro=trixie
purl pkg:deb/debian/xen@4.19.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.19.1-1%3Fdistro=trixie
20
url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-95cq-vype-v3at
1
vulnerability VCID-kryr-thzx-4qe3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie
21
url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie
purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-95cq-vype-v3at
1
vulnerability VCID-kryr-thzx-4qe3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie
22
url pkg:ebuild/app-emulation/xen@4.17.4
purl pkg:ebuild/app-emulation/xen@4.17.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen@4.17.4
Affected_packages
0
url pkg:deb/debian/xen@4.14.6-1
purl pkg:deb/debian/xen@4.14.6-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1h99-wye2-bqbe
1
vulnerability VCID-1sb1-p9rq-pub4
2
vulnerability VCID-2bvb-fqe1-ubf4
3
vulnerability VCID-3mes-truy-1qef
4
vulnerability VCID-4hwq-xyed-ubfm
5
vulnerability VCID-4n69-ymzn-vfc9
6
vulnerability VCID-5zu9-jtr5-5kf5
7
vulnerability VCID-675c-7a9m-2qcy
8
vulnerability VCID-67r9-psv3-v7gh
9
vulnerability VCID-6d7p-jgdr-uqeb
10
vulnerability VCID-6vxt-mva5-97az
11
vulnerability VCID-7jyb-ttqb-wqeh
12
vulnerability VCID-7ktt-ger4-puh6
13
vulnerability VCID-8bht-z48r-tkg7
14
vulnerability VCID-9msg-54yu-5uby
15
vulnerability VCID-a65s-gmv5-8ufd
16
vulnerability VCID-anhc-sf7k-xkg6
17
vulnerability VCID-b89f-jgg2-j3hk
18
vulnerability VCID-che2-jhpb-qbbk
19
vulnerability VCID-cmvj-v1sf-6ba8
20
vulnerability VCID-e134-y3wh-ekbk
21
vulnerability VCID-h9vf-yz14-cyhe
22
vulnerability VCID-hnwf-25ag-1yhc
23
vulnerability VCID-hrkf-g54b-ekh5
24
vulnerability VCID-hvns-t4kw-wyag
25
vulnerability VCID-kghu-d1et-1kfk
26
vulnerability VCID-kr6n-rtvn-sqf1
27
vulnerability VCID-kryr-thzx-4qe3
28
vulnerability VCID-my18-m8ym-n3en
29
vulnerability VCID-p2hs-ssbm-gygt
30
vulnerability VCID-pfv3-kcn1-fkaz
31
vulnerability VCID-pm1v-uvqj-jqh7
32
vulnerability VCID-qs5h-ttj9-ukfy
33
vulnerability VCID-qvmm-p5r3-mfgj
34
vulnerability VCID-rjwh-6n2t-nqcv
35
vulnerability VCID-sz4b-q5bx-8kdu
36
vulnerability VCID-uqng-7wbx-qydv
37
vulnerability VCID-v94p-hw6e-83ft
38
vulnerability VCID-vpy6-afbr-tqb7
39
vulnerability VCID-x1su-mmu3-87fy
40
vulnerability VCID-x8z9-s288-qfab
41
vulnerability VCID-xhs5-85hx-zycw
42
vulnerability VCID-ypqn-ch2e-d3bd
43
vulnerability VCID-z4dv-q614-1ydd
44
vulnerability VCID-zfd9-kzqs-dkg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1
1
url pkg:deb/debian/xen@4.14.6-1?distro=trixie
purl pkg:deb/debian/xen@4.14.6-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1h99-wye2-bqbe
1
vulnerability VCID-1sb1-p9rq-pub4
2
vulnerability VCID-2bvb-fqe1-ubf4
3
vulnerability VCID-3mes-truy-1qef
4
vulnerability VCID-4hwq-xyed-ubfm
5
vulnerability VCID-4n69-ymzn-vfc9
6
vulnerability VCID-5zu9-jtr5-5kf5
7
vulnerability VCID-675c-7a9m-2qcy
8
vulnerability VCID-67r9-psv3-v7gh
9
vulnerability VCID-6d7p-jgdr-uqeb
10
vulnerability VCID-6vxt-mva5-97az
11
vulnerability VCID-7jyb-ttqb-wqeh
12
vulnerability VCID-7ktt-ger4-puh6
13
vulnerability VCID-8bht-z48r-tkg7
14
vulnerability VCID-9msg-54yu-5uby
15
vulnerability VCID-a65s-gmv5-8ufd
16
vulnerability VCID-anhc-sf7k-xkg6
17
vulnerability VCID-b89f-jgg2-j3hk
18
vulnerability VCID-che2-jhpb-qbbk
19
vulnerability VCID-cmvj-v1sf-6ba8
20
vulnerability VCID-e134-y3wh-ekbk
21
vulnerability VCID-h9vf-yz14-cyhe
22
vulnerability VCID-hnwf-25ag-1yhc
23
vulnerability VCID-hrkf-g54b-ekh5
24
vulnerability VCID-hvns-t4kw-wyag
25
vulnerability VCID-kghu-d1et-1kfk
26
vulnerability VCID-kr6n-rtvn-sqf1
27
vulnerability VCID-kryr-thzx-4qe3
28
vulnerability VCID-my18-m8ym-n3en
29
vulnerability VCID-p2hs-ssbm-gygt
30
vulnerability VCID-pfv3-kcn1-fkaz
31
vulnerability VCID-pm1v-uvqj-jqh7
32
vulnerability VCID-qs5h-ttj9-ukfy
33
vulnerability VCID-qvmm-p5r3-mfgj
34
vulnerability VCID-rjwh-6n2t-nqcv
35
vulnerability VCID-sz4b-q5bx-8kdu
36
vulnerability VCID-uqng-7wbx-qydv
37
vulnerability VCID-v94p-hw6e-83ft
38
vulnerability VCID-vpy6-afbr-tqb7
39
vulnerability VCID-x1su-mmu3-87fy
40
vulnerability VCID-x8z9-s288-qfab
41
vulnerability VCID-xhs5-85hx-zycw
42
vulnerability VCID-ypqn-ch2e-d3bd
43
vulnerability VCID-z4dv-q614-1ydd
44
vulnerability VCID-zfd9-kzqs-dkg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-2193.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-2193.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-2193
reference_id
reference_type
scores
0
value 0.00897
scoring_system epss
scoring_elements 0.75973
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-2193
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url http://www.openwall.com/lists/oss-security/2024/03/12/14
reference_id 14
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url http://www.openwall.com/lists/oss-security/2024/03/12/14
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2262051
reference_id 2262051
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2262051
5
reference_url https://kb.cert.org/vuls/id/488902
reference_id 488902
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://kb.cert.org/vuls/id/488902
6
reference_url https://www.kb.cert.org/vuls/id/488902
reference_id 488902
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://www.kb.cert.org/vuls/id/488902
7
reference_url https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7016.html
reference_id amd-sb-7016.html
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7016.html
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EIUICU6CVJUIB6BPJ7P5QTPQR5VOBHFK/
reference_id EIUICU6CVJUIB6BPJ7P5QTPQR5VOBHFK
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EIUICU6CVJUIB6BPJ7P5QTPQR5VOBHFK/
9
reference_url https://ibm.github.io/system-security-research-updates/2024/03/12/ghostrace
reference_id ghostrace
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://ibm.github.io/system-security-research-updates/2024/03/12/ghostrace
10
reference_url https://www.vusec.net/projects/ghostrace/
reference_id ghostrace
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://www.vusec.net/projects/ghostrace/
11
reference_url https://download.vusec.net/papers/ghostrace_sec24.pdf
reference_id ghostrace_sec24.pdf
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://download.vusec.net/papers/ghostrace_sec24.pdf
12
reference_url https://security.gentoo.org/glsa/202409-10
reference_id GLSA-202409-10
reference_type
scores
url https://security.gentoo.org/glsa/202409-10
13
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H63LGAQXPEVJOES73U4XK65I6DASOAAG/
reference_id H63LGAQXPEVJOES73U4XK65I6DASOAAG
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H63LGAQXPEVJOES73U4XK65I6DASOAAG/
14
reference_url https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/patch/?id=944d5fe50f3f03daacfea16300e656a1691c4a23
reference_id ?id=944d5fe50f3f03daacfea16300e656a1691c4a23
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/patch/?id=944d5fe50f3f03daacfea16300e656a1691c4a23
15
reference_url https://xenbits.xen.org/xsa/advisory-453.html
reference_id XSA-453
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://xenbits.xen.org/xsa/advisory-453.html
16
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZON4TLXG7TG4A2XZG563JMVTGQW4SF3A/
reference_id ZON4TLXG7TG4A2XZG563JMVTGQW4SF3A
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZON4TLXG7TG4A2XZG563JMVTGQW4SF3A/
Weaknesses
0
cwe_id 1300
name Improper Protection of Physical Side Channels
description The device does not contain sufficient protection mechanisms to prevent physical side channels from exposing sensitive information due to patterns in physically observable phenomena such as variations in power consumption, electromagnetic emissions (EME), or acoustic emissions.
1
cwe_id 362
name Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
description The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.
Exploits
Severity_range_score5.5 - 5.7
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-uqng-7wbx-qydv