{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/518?format=json","vulnerability_id":"VCID-uqng-7wbx-qydv","summary":"GhostRace: Speculative Race Conditions","aliases":[{"alias":"CVE-2024-2193"},{"alias":"XSA-453"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/261718?format=json","purl":"pkg:apk/alpine/xen@4.17.3-r1?arch=aarch64&distroversion=v3.18&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=aarch64&distroversion=v3.18&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/261719?format=json","purl":"pkg:apk/alpine/xen@4.17.3-r1?arch=armhf&distroversion=v3.18&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=armhf&distroversion=v3.18&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/261720?format=json","purl":"pkg:apk/alpine/xen@4.17.3-r1?arch=armv7&distroversion=v3.18&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=armv7&distroversion=v3.18&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/261721?format=json","purl":"pkg:apk/alpine/xen@4.17.3-r1?arch=ppc64le&distroversion=v3.18&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=ppc64le&distroversion=v3.18&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/261722?format=json","purl":"pkg:apk/alpine/xen@4.17.3-r1?arch=s390x&distroversion=v3.18&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=s390x&distroversion=v3.18&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/261724?format=json","purl":"pkg:apk/alpine/xen@4.17.3-r1?arch=x86_64&distroversion=v3.18&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=x86_64&distroversion=v3.18&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/261723?format=json","purl":"pkg:apk/alpine/xen@4.17.3-r1?arch=x86&distroversion=v3.18&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.17.3-r1%3Farch=x86&distroversion=v3.18&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/370139?format=json","purl":"pkg:apk/alpine/xen@4.18.0-r5?arch=aarch64&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=aarch64&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/370140?format=json","purl":"pkg:apk/alpine/xen@4.18.0-r5?arch=armhf&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=armhf&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/370141?format=json","purl":"pkg:apk/alpine/xen@4.18.0-r5?arch=armv7&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=armv7&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/370142?format=json","purl":"pkg:apk/alpine/xen@4.18.0-r5?arch=loongarch64&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=loongarch64&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/370143?format=json","purl":"pkg:apk/alpine/xen@4.18.0-r5?arch=ppc64le&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=ppc64le&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/370144?format=json","purl":"pkg:apk/alpine/xen@4.18.0-r5?arch=riscv64&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=riscv64&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/370145?format=json","purl":"pkg:apk/alpine/xen@4.18.0-r5?arch=s390x&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=s390x&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/370147?format=json","purl":"pkg:apk/alpine/xen@4.18.0-r5?arch=x86_64&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=x86_64&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/370146?format=json","purl":"pkg:apk/alpine/xen@4.18.0-r5?arch=x86&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.18.0-r5%3Farch=x86&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/414111?format=json","purl":"pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-95cq-vype-v3at"},{"vulnerability":"VCID-hvns-t4kw-wyag"},{"vulnerability":"VCID-zfd9-kzqs-dkg8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1"},{"url":"http://public2.vulnerablecode.io/api/packages/212172?format=json","purl":"pkg:deb/debian/xen@4.17.5%2B23-ga4e5191dc0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B23-ga4e5191dc0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/212080?format=json","purl":"pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-95cq-vype-v3at"},{"vulnerability":"VCID-hvns-t4kw-wyag"},{"vulnerability":"VCID-zfd9-kzqs-dkg8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/212173?format=json","purl":"pkg:deb/debian/xen@4.19.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.19.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/212084?format=json","purl":"pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-95cq-vype-v3at"},{"vulnerability":"VCID-kryr-thzx-4qe3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/212083?format=json","purl":"pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-95cq-vype-v3at"},{"vulnerability":"VCID-kryr-thzx-4qe3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179286?format=json","purl":"pkg:ebuild/app-emulation/xen@4.17.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen@4.17.4"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/414110?format=json","purl":"pkg:deb/debian/xen@4.14.6-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1h99-wye2-bqbe"},{"vulnerability":"VCID-1sb1-p9rq-pub4"},{"vulnerability":"VCID-2bvb-fqe1-ubf4"},{"vulnerability":"VCID-3mes-truy-1qef"},{"vulnerability":"VCID-4hwq-xyed-ubfm"},{"vulnerability":"VCID-4n69-ymzn-vfc9"},{"vulnerability":"VCID-5zu9-jtr5-5kf5"},{"vulnerability":"VCID-675c-7a9m-2qcy"},{"vulnerability":"VCID-67r9-psv3-v7gh"},{"vulnerability":"VCID-6d7p-jgdr-uqeb"},{"vulnerability":"VCID-6vxt-mva5-97az"},{"vulnerability":"VCID-7jyb-ttqb-wqeh"},{"vulnerability":"VCID-7ktt-ger4-puh6"},{"vulnerability":"VCID-8bht-z48r-tkg7"},{"vulnerability":"VCID-9msg-54yu-5uby"},{"vulnerability":"VCID-a65s-gmv5-8ufd"},{"vulnerability":"VCID-anhc-sf7k-xkg6"},{"vulnerability":"VCID-b89f-jgg2-j3hk"},{"vulnerability":"VCID-che2-jhpb-qbbk"},{"vulnerability":"VCID-cmvj-v1sf-6ba8"},{"vulnerability":"VCID-e134-y3wh-ekbk"},{"vulnerability":"VCID-h9vf-yz14-cyhe"},{"vulnerability":"VCID-hnwf-25ag-1yhc"},{"vulnerability":"VCID-hrkf-g54b-ekh5"},{"vulnerability":"VCID-hvns-t4kw-wyag"},{"vulnerability":"VCID-kghu-d1et-1kfk"},{"vulnerability":"VCID-kr6n-rtvn-sqf1"},{"vulnerability":"VCID-kryr-thzx-4qe3"},{"vulnerability":"VCID-my18-m8ym-n3en"},{"vulnerability":"VCID-p2hs-ssbm-gygt"},{"vulnerability":"VCID-pfv3-kcn1-fkaz"},{"vulnerability":"VCID-pm1v-uvqj-jqh7"},{"vulnerability":"VCID-qs5h-ttj9-ukfy"},{"vulnerability":"VCID-qvmm-p5r3-mfgj"},{"vulnerability":"VCID-rjwh-6n2t-nqcv"},{"vulnerability":"VCID-sz4b-q5bx-8kdu"},{"vulnerability":"VCID-uqng-7wbx-qydv"},{"vulnerability":"VCID-v94p-hw6e-83ft"},{"vulnerability":"VCID-vpy6-afbr-tqb7"},{"vulnerability":"VCID-x1su-mmu3-87fy"},{"vulnerability":"VCID-x8z9-s288-qfab"},{"vulnerability":"VCID-xhs5-85hx-zycw"},{"vulnerability":"VCID-ypqn-ch2e-d3bd"},{"vulnerability":"VCID-z4dv-q614-1ydd"},{"vulnerability":"VCID-zfd9-kzqs-dkg8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1"},{"url":"http://public2.vulnerablecode.io/api/packages/212082?format=json","purl":"pkg:deb/debian/xen@4.14.6-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1h99-wye2-bqbe"},{"vulnerability":"VCID-1sb1-p9rq-pub4"},{"vulnerability":"VCID-2bvb-fqe1-ubf4"},{"vulnerability":"VCID-3mes-truy-1qef"},{"vulnerability":"VCID-4hwq-xyed-ubfm"},{"vulnerability":"VCID-4n69-ymzn-vfc9"},{"vulnerability":"VCID-5zu9-jtr5-5kf5"},{"vulnerability":"VCID-675c-7a9m-2qcy"},{"vulnerability":"VCID-67r9-psv3-v7gh"},{"vulnerability":"VCID-6d7p-jgdr-uqeb"},{"vulnerability":"VCID-6vxt-mva5-97az"},{"vulnerability":"VCID-7jyb-ttqb-wqeh"},{"vulnerability":"VCID-7ktt-ger4-puh6"},{"vulnerability":"VCID-8bht-z48r-tkg7"},{"vulnerability":"VCID-9msg-54yu-5uby"},{"vulnerability":"VCID-a65s-gmv5-8ufd"},{"vulnerability":"VCID-anhc-sf7k-xkg6"},{"vulnerability":"VCID-b89f-jgg2-j3hk"},{"vulnerability":"VCID-che2-jhpb-qbbk"},{"vulnerability":"VCID-cmvj-v1sf-6ba8"},{"vulnerability":"VCID-e134-y3wh-ekbk"},{"vulnerability":"VCID-h9vf-yz14-cyhe"},{"vulnerability":"VCID-hnwf-25ag-1yhc"},{"vulnerability":"VCID-hrkf-g54b-ekh5"},{"vulnerability":"VCID-hvns-t4kw-wyag"},{"vulnerability":"VCID-kghu-d1et-1kfk"},{"vulnerability":"VCID-kr6n-rtvn-sqf1"},{"vulnerability":"VCID-kryr-thzx-4qe3"},{"vulnerability":"VCID-my18-m8ym-n3en"},{"vulnerability":"VCID-p2hs-ssbm-gygt"},{"vulnerability":"VCID-pfv3-kcn1-fkaz"},{"vulnerability":"VCID-pm1v-uvqj-jqh7"},{"vulnerability":"VCID-qs5h-ttj9-ukfy"},{"vulnerability":"VCID-qvmm-p5r3-mfgj"},{"vulnerability":"VCID-rjwh-6n2t-nqcv"},{"vulnerability":"VCID-sz4b-q5bx-8kdu"},{"vulnerability":"VCID-uqng-7wbx-qydv"},{"vulnerability":"VCID-v94p-hw6e-83ft"},{"vulnerability":"VCID-vpy6-afbr-tqb7"},{"vulnerability":"VCID-x1su-mmu3-87fy"},{"vulnerability":"VCID-x8z9-s288-qfab"},{"vulnerability":"VCID-xhs5-85hx-zycw"},{"vulnerability":"VCID-ypqn-ch2e-d3bd"},{"vulnerability":"VCID-z4dv-q614-1ydd"},{"vulnerability":"VCID-zfd9-kzqs-dkg8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-2193.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-2193.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-2193","reference_id":"","reference_type":"","scores":[{"value":"0.00897","scoring_system":"epss","scoring_elements":"0.75973","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-2193"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/03/12/14","reference_id":"14","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/03/12/14"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2262051","reference_id":"2262051","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2262051"},{"reference_url":"https://kb.cert.org/vuls/id/488902","reference_id":"488902","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://kb.cert.org/vuls/id/488902"},{"reference_url":"https://www.kb.cert.org/vuls/id/488902","reference_id":"488902","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://www.kb.cert.org/vuls/id/488902"},{"reference_url":"https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7016.html","reference_id":"amd-sb-7016.html","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7016.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EIUICU6CVJUIB6BPJ7P5QTPQR5VOBHFK/","reference_id":"EIUICU6CVJUIB6BPJ7P5QTPQR5VOBHFK","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EIUICU6CVJUIB6BPJ7P5QTPQR5VOBHFK/"},{"reference_url":"https://ibm.github.io/system-security-research-updates/2024/03/12/ghostrace","reference_id":"ghostrace","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://ibm.github.io/system-security-research-updates/2024/03/12/ghostrace"},{"reference_url":"https://www.vusec.net/projects/ghostrace/","reference_id":"ghostrace","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://www.vusec.net/projects/ghostrace/"},{"reference_url":"https://download.vusec.net/papers/ghostrace_sec24.pdf","reference_id":"ghostrace_sec24.pdf","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://download.vusec.net/papers/ghostrace_sec24.pdf"},{"reference_url":"https://security.gentoo.org/glsa/202409-10","reference_id":"GLSA-202409-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-10"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H63LGAQXPEVJOES73U4XK65I6DASOAAG/","reference_id":"H63LGAQXPEVJOES73U4XK65I6DASOAAG","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H63LGAQXPEVJOES73U4XK65I6DASOAAG/"},{"reference_url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/patch/?id=944d5fe50f3f03daacfea16300e656a1691c4a23","reference_id":"?id=944d5fe50f3f03daacfea16300e656a1691c4a23","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/patch/?id=944d5fe50f3f03daacfea16300e656a1691c4a23"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-453.html","reference_id":"XSA-453","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://xenbits.xen.org/xsa/advisory-453.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZON4TLXG7TG4A2XZG563JMVTGQW4SF3A/","reference_id":"ZON4TLXG7TG4A2XZG563JMVTGQW4SF3A","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-18T15:31:03Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZON4TLXG7TG4A2XZG563JMVTGQW4SF3A/"}],"weaknesses":[{"cwe_id":1300,"name":"Improper Protection of Physical Side Channels","description":"The device does not contain sufficient protection mechanisms to prevent physical side channels from exposing sensitive information due to patterns in physically observable phenomena such as variations in power consumption, electromagnetic emissions (EME), or acoustic emissions."},{"cwe_id":362,"name":"Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')","description":"The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently."}],"exploits":[],"severity_range_score":"5.5 - 5.7","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uqng-7wbx-qydv"}