{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64937?format=json","vulnerability_id":"VCID-uf5s-kms5-g7a9","summary":"cpython: POP3 command injection in user-controlled commands","aliases":[{"alias":"CVE-2025-15367"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/936982?format=json","purl":"pkg:deb/debian/python3.9@3.9.2-1?distro=bullseye","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1%3Fdistro=bullseye"},{"url":"http://public2.vulnerablecode.io/api/packages/936990?format=json","purl":"pkg:deb/debian/python3.9@3.9.2-1%2Bdeb11u5?distro=bullseye","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1%252Bdeb11u5%3Fdistro=bullseye"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1049436?format=json","purl":"pkg:deb/debian/python3.9@3.9.2-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2j3t-a3r6-vfg7"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-5maz-1h1k-3qfj"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-ct6h-d1eh-7bgj"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-ewbq-2gm8-tyf5"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-j8hj-k7wy-yfch"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-rcu5-gpmt-r7cb"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-uf5s-kms5-g7a9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-z48d-eyxz-bycq"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1"},{"url":"http://public2.vulnerablecode.io/api/packages/87323?format=json","purl":"pkg:rpm/redhat/python@2.6.6-70.el6_10?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.6.6-70.el6_10%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/87324?format=json","purl":"pkg:rpm/redhat/python@2.7.5-94.el7_9?arch=3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.7.5-94.el7_9%3Farch=3"},{"url":"http://public2.vulnerablecode.io/api/packages/995292?format=json","purl":"pkg:rpm/redhat/python3@3.6.8-21.el7_9?arch=4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-21.el7_9%3Farch=4"},{"url":"http://public2.vulnerablecode.io/api/packages/87262?format=json","purl":"pkg:rpm/redhat/python3@3.6.8-24.el8_2?arch=6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-24.el8_2%3Farch=6"},{"url":"http://public2.vulnerablecode.io/api/packages/87258?format=json","purl":"pkg:rpm/redhat/python3@3.6.8-39.el8_4?arch=9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-39.el8_4%3Farch=9"},{"url":"http://public2.vulnerablecode.io/api/packages/87257?format=json","purl":"pkg:rpm/redhat/python3@3.6.8-47.el8_6?arch=11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-47.el8_6%3Farch=11"},{"url":"http://public2.vulnerablecode.io/api/packages/87273?format=json","purl":"pkg:rpm/redhat/python3@3.6.8-51.el8_8?arch=13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-51.el8_8%3Farch=13"},{"url":"http://public2.vulnerablecode.io/api/packages/87275?format=json","purl":"pkg:rpm/redhat/python3@3.6.8-73?arch=el8_10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-73%3Farch=el8_10"},{"url":"http://public2.vulnerablecode.io/api/packages/87259?format=json","purl":"pkg:rpm/redhat/python3.11@3.11.2-2.el8_8?arch=8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.2-2.el8_8%3Farch=8"},{"url":"http://public2.vulnerablecode.io/api/packages/87271?format=json","purl":"pkg:rpm/redhat/python3.11@3.11.2-2.el9_2?arch=10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.2-2.el9_2%3Farch=10"},{"url":"http://public2.vulnerablecode.io/api/packages/87266?format=json","purl":"pkg:rpm/redhat/python3.11@3.11.7-1.el9_4?arch=11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.7-1.el9_4%3Farch=11"},{"url":"http://public2.vulnerablecode.io/api/packages/87267?format=json","purl":"pkg:rpm/redhat/python3.11@3.11.13-5?arch=el8_10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.13-5%3Farch=el8_10"},{"url":"http://public2.vulnerablecode.io/api/packages/87261?format=json","purl":"pkg:rpm/redhat/python3.11@3.11.13-5.1?arch=el9_7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.13-5.1%3Farch=el9_7"},{"url":"http://public2.vulnerablecode.io/api/packages/1072979?format=json","purl":"pkg:rpm/redhat/python3-11-main@3.11.15-4?arch=hum1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9vcx-2fts-gkfw"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-gqzt-rh1w-jkfu"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-rcu5-gpmt-r7cb"},{"vulnerability":"VCID-uf5s-kms5-g7a9"},{"vulnerability":"VCID-ygdw-ymrf-kqg1"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-11-main@3.11.15-4%3Farch=hum1"},{"url":"http://public2.vulnerablecode.io/api/packages/87265?format=json","purl":"pkg:rpm/redhat/python3.12@3.12.1-4.el9_4?arch=11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.1-4.el9_4%3Farch=11"},{"url":"http://public2.vulnerablecode.io/api/packages/87264?format=json","purl":"pkg:rpm/redhat/python3.12@3.12.9-1.el9_6?arch=6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.9-1.el9_6%3Farch=6"},{"url":"http://public2.vulnerablecode.io/api/packages/87269?format=json","purl":"pkg:rpm/redhat/python3.12@3.12.9-2.el10_0?arch=7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.9-2.el10_0%3Farch=7"},{"url":"http://public2.vulnerablecode.io/api/packages/87272?format=json","purl":"pkg:rpm/redhat/python3.12@3.12.12-3?arch=el8_10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.12-3%3Farch=el8_10"},{"url":"http://public2.vulnerablecode.io/api/packages/87274?format=json","purl":"pkg:rpm/redhat/python3.12@3.12.12-3.el10_1?arch=1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.12-3.el10_1%3Farch=1"},{"url":"http://public2.vulnerablecode.io/api/packages/87260?format=json","purl":"pkg:rpm/redhat/python3.12@3.12.12-4.el9_7?arch=1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.12-4.el9_7%3Farch=1"},{"url":"http://public2.vulnerablecode.io/api/packages/1072977?format=json","purl":"pkg:rpm/redhat/python3-12-main@3.12.13-3?arch=hum1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9vcx-2fts-gkfw"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-gqzt-rh1w-jkfu"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-rcu5-gpmt-r7cb"},{"vulnerability":"VCID-uf5s-kms5-g7a9"},{"vulnerability":"VCID-ygdw-ymrf-kqg1"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-12-main@3.12.13-3%3Farch=hum1"},{"url":"http://public2.vulnerablecode.io/api/packages/1072978?format=json","purl":"pkg:rpm/redhat/python3-13-main@3.13.13-1?arch=hum1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-39hb-75mq-hyet"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9vcx-2fts-gkfw"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-gqzt-rh1w-jkfu"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-m4d3-db9x-h7h2"},{"vulnerability":"VCID-n4au-q9bs-kucb"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q653-8f64-gkbe"},{"vulnerability":"VCID-uf5s-kms5-g7a9"},{"vulnerability":"VCID-ygdw-ymrf-kqg1"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-13-main@3.13.13-1%3Farch=hum1"},{"url":"http://public2.vulnerablecode.io/api/packages/1073092?format=json","purl":"pkg:rpm/redhat/python3-14-main@3.14.3-2?arch=hum1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-14-main@3.14.3-2%3Farch=hum1"},{"url":"http://public2.vulnerablecode.io/api/packages/87268?format=json","purl":"pkg:rpm/redhat/python3.9@3.9.10-4.el9_0?arch=9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.10-4.el9_0%3Farch=9"},{"url":"http://public2.vulnerablecode.io/api/packages/87277?format=json","purl":"pkg:rpm/redhat/python3.9@3.9.16-1.el9_2?arch=12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.16-1.el9_2%3Farch=12"},{"url":"http://public2.vulnerablecode.io/api/packages/87270?format=json","purl":"pkg:rpm/redhat/python3.9@3.9.18-3.el9_4?arch=11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.18-3.el9_4%3Farch=11"},{"url":"http://public2.vulnerablecode.io/api/packages/87263?format=json","purl":"pkg:rpm/redhat/python3.9@3.9.21-2.el9_6?arch=4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.21-2.el9_6%3Farch=4"},{"url":"http://public2.vulnerablecode.io/api/packages/87276?format=json","purl":"pkg:rpm/redhat/python3.9@3.9.25-3.el9_7?arch=1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-39e1-7qrc-53av"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-uf5s-kms5-g7a9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.25-3.el9_7%3Farch=1"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15367.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15367.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-15367","reference_id":"","reference_type":"","scores":[{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23923","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23686","published_at":"2026-05-14T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23763","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23647","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23636","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23601","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23478","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.2356","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23628","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23577","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23597","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23964","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23752","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23823","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.2387","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23885","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23841","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23784","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23796","published_at":"2026-04-16T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-15367"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15367","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15367"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1136209","reference_id":"1136209","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1136209"},{"reference_url":"https://github.com/python/cpython/issues/143923","reference_id":"143923","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:33Z/"}],"url":"https://github.com/python/cpython/issues/143923"},{"reference_url":"https://github.com/python/cpython/pull/143924","reference_id":"143924","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:33Z/"}],"url":"https://github.com/python/cpython/pull/143924"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431373","reference_id":"2431373","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431373"},{"reference_url":"https://github.com/python/cpython/commit/b234a2b67539f787e191d2ef19a7cbdce32874e7","reference_id":"b234a2b67539f787e191d2ef19a7cbdce32874e7","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:33Z/"}],"url":"https://github.com/python/cpython/commit/b234a2b67539f787e191d2ef19a7cbdce32874e7"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/CBFBOWVGGUJFSGITQCCBZS4GEYYZ7ZNE/","reference_id":"CBFBOWVGGUJFSGITQCCBZS4GEYYZ7ZNE","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:33Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/CBFBOWVGGUJFSGITQCCBZS4GEYYZ7ZNE/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:16174","reference_id":"RHSA-2026:16174","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:16174"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:2128","reference_id":"RHSA-2026:2128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:2128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4165","reference_id":"RHSA-2026:4165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4168","reference_id":"RHSA-2026:4168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4216","reference_id":"RHSA-2026:4216","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4216"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4463","reference_id":"RHSA-2026:4463","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4463"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4473","reference_id":"RHSA-2026:4473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4713","reference_id":"RHSA-2026:4713","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4713"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4746","reference_id":"RHSA-2026:4746","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4943","reference_id":"RHSA-2026:4943","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4943"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5152","reference_id":"RHSA-2026:5152","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5152"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5215","reference_id":"RHSA-2026:5215","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5215"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5216","reference_id":"RHSA-2026:5216","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5216"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5218","reference_id":"RHSA-2026:5218","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5218"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5219","reference_id":"RHSA-2026:5219","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5219"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5221","reference_id":"RHSA-2026:5221","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5221"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5223","reference_id":"RHSA-2026:5223","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5223"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5225","reference_id":"RHSA-2026:5225","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5225"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5226","reference_id":"RHSA-2026:5226","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5226"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5315","reference_id":"RHSA-2026:5315","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5315"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5393","reference_id":"RHSA-2026:5393","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5393"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5399","reference_id":"RHSA-2026:5399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5399"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5606","reference_id":"RHSA-2026:5606","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5606"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5994","reference_id":"RHSA-2026:5994","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5994"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6007","reference_id":"RHSA-2026:6007","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6007"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6008","reference_id":"RHSA-2026:6008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6253","reference_id":"RHSA-2026:6253","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6253"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6464","reference_id":"RHSA-2026:6464","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6464"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7329","reference_id":"RHSA-2026:7329","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7329"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8746","reference_id":"RHSA-2026:8746","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8747","reference_id":"RHSA-2026:8747","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8747"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8748","reference_id":"RHSA-2026:8748","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8748"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/8018-1/","reference_id":"USN-8018-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-1/"},{"reference_url":"https://usn.ubuntu.com/8018-2/","reference_id":"USN-8018-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8018-2/"}],"weaknesses":[{"cwe_id":77,"name":"Improper Neutralization of Special Elements used in a Command ('Command Injection')","description":"The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component."}],"exploits":[],"severity_range_score":"5.9 - 7.1","exploitability":"0.5","weighted_severity":"6.4","risk_score":3.2,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uf5s-kms5-g7a9"}