Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/64938?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/64938?format=api", "vulnerability_id": "VCID-39e1-7qrc-53av", "summary": "cpython: IMAP command injection in user-controlled commands", "aliases": [ { "alias": "CVE-2025-15366" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/936982?format=api", "purl": "pkg:deb/debian/python3.9@3.9.2-1?distro=bullseye", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1%3Fdistro=bullseye" }, { "url": "http://public2.vulnerablecode.io/api/packages/936990?format=api", "purl": "pkg:deb/debian/python3.9@3.9.2-1%2Bdeb11u5?distro=bullseye", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1%252Bdeb11u5%3Fdistro=bullseye" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1049436?format=api", "purl": "pkg:deb/debian/python3.9@3.9.2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1uk5-6yqb-dyb5" }, { "vulnerability": "VCID-2j3t-a3r6-vfg7" }, { "vulnerability": "VCID-2shb-2cvn-dyd2" }, { "vulnerability": "VCID-2v5u-2z4w-ffgx" }, { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-4gsg-5e6s-63g4" }, { "vulnerability": "VCID-4z89-3tfk-pyge" }, { "vulnerability": "VCID-5maz-1h1k-3qfj" }, { "vulnerability": "VCID-7ka5-7jrn-dber" }, { "vulnerability": "VCID-7s7y-9bw5-m3ep" }, { "vulnerability": "VCID-8b19-pezx-6bcd" }, { "vulnerability": "VCID-8dtv-379a-wqfs" }, { "vulnerability": "VCID-94n7-6q4s-3udv" }, { "vulnerability": "VCID-9nvp-aus1-9yed" }, { "vulnerability": "VCID-9sms-mhht-n3aq" }, { "vulnerability": "VCID-a8mv-mr3q-vygz" }, { "vulnerability": "VCID-bn83-d2qp-9bfy" }, { "vulnerability": "VCID-bqp2-x383-xqfh" }, { "vulnerability": "VCID-ct6h-d1eh-7bgj" }, { "vulnerability": "VCID-dexx-3ssz-nqfg" }, { "vulnerability": "VCID-dnv8-yrd6-c7cv" }, { "vulnerability": "VCID-e6rs-jwvu-jycd" }, { "vulnerability": "VCID-e6sb-bh7v-9ugg" }, { "vulnerability": "VCID-emaw-jmek-9bcy" }, { "vulnerability": "VCID-ewbq-2gm8-tyf5" }, { "vulnerability": "VCID-fcsb-dn49-47gy" }, { "vulnerability": "VCID-h7z2-vc14-nfhq" }, { "vulnerability": "VCID-j8hj-k7wy-yfch" }, { "vulnerability": "VCID-js5p-py72-2kga" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-mtk7-qut6-syd8" }, { "vulnerability": "VCID-nqqc-u8d5-8qf6" }, { "vulnerability": "VCID-qqh6-evfk-1fgy" }, { "vulnerability": "VCID-qwhz-912b-8kh5" }, { "vulnerability": "VCID-rcu5-gpmt-r7cb" }, { "vulnerability": "VCID-smck-sdx2-c7du" }, { "vulnerability": "VCID-tbuw-2msj-tqd9" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" }, { "vulnerability": "VCID-v186-7sv1-ubej" }, { "vulnerability": "VCID-vpwj-d49q-1uh8" }, { "vulnerability": "VCID-z48d-eyxz-bycq" }, { "vulnerability": "VCID-zh1r-7rzh-2bez" }, { "vulnerability": "VCID-znkr-fxtj-4uc7" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/87323?format=api", "purl": "pkg:rpm/redhat/python@2.6.6-70.el6_10?arch=2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.6.6-70.el6_10%3Farch=2" }, { "url": "http://public2.vulnerablecode.io/api/packages/87324?format=api", "purl": "pkg:rpm/redhat/python@2.7.5-94.el7_9?arch=3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.7.5-94.el7_9%3Farch=3" }, { "url": "http://public2.vulnerablecode.io/api/packages/995292?format=api", "purl": "pkg:rpm/redhat/python3@3.6.8-21.el7_9?arch=4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-21.el7_9%3Farch=4" }, { "url": "http://public2.vulnerablecode.io/api/packages/87262?format=api", "purl": "pkg:rpm/redhat/python3@3.6.8-24.el8_2?arch=6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-24.el8_2%3Farch=6" }, { "url": "http://public2.vulnerablecode.io/api/packages/87258?format=api", "purl": "pkg:rpm/redhat/python3@3.6.8-39.el8_4?arch=9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-39.el8_4%3Farch=9" }, { "url": "http://public2.vulnerablecode.io/api/packages/87257?format=api", "purl": "pkg:rpm/redhat/python3@3.6.8-47.el8_6?arch=11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-47.el8_6%3Farch=11" }, { "url": "http://public2.vulnerablecode.io/api/packages/87273?format=api", "purl": "pkg:rpm/redhat/python3@3.6.8-51.el8_8?arch=13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-51.el8_8%3Farch=13" }, { "url": "http://public2.vulnerablecode.io/api/packages/87275?format=api", "purl": "pkg:rpm/redhat/python3@3.6.8-73?arch=el8_10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-8b19-pezx-6bcd" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-73%3Farch=el8_10" }, { "url": "http://public2.vulnerablecode.io/api/packages/87259?format=api", "purl": "pkg:rpm/redhat/python3.11@3.11.2-2.el8_8?arch=8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.2-2.el8_8%3Farch=8" }, { "url": "http://public2.vulnerablecode.io/api/packages/87271?format=api", "purl": "pkg:rpm/redhat/python3.11@3.11.2-2.el9_2?arch=10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.2-2.el9_2%3Farch=10" }, { "url": "http://public2.vulnerablecode.io/api/packages/87266?format=api", "purl": "pkg:rpm/redhat/python3.11@3.11.7-1.el9_4?arch=11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-8b19-pezx-6bcd" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.7-1.el9_4%3Farch=11" }, { "url": "http://public2.vulnerablecode.io/api/packages/87267?format=api", "purl": "pkg:rpm/redhat/python3.11@3.11.13-5?arch=el8_10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-8b19-pezx-6bcd" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.13-5%3Farch=el8_10" }, { "url": "http://public2.vulnerablecode.io/api/packages/87261?format=api", "purl": "pkg:rpm/redhat/python3.11@3.11.13-5.1?arch=el9_7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11@3.11.13-5.1%3Farch=el9_7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072979?format=api", "purl": "pkg:rpm/redhat/python3-11-main@3.11.15-4?arch=hum1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pr1-jkqa-43g6" }, { "vulnerability": "VCID-1uk5-6yqb-dyb5" }, { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-8b19-pezx-6bcd" }, { "vulnerability": "VCID-8dtv-379a-wqfs" }, { "vulnerability": "VCID-94n7-6q4s-3udv" }, { "vulnerability": "VCID-9vcx-2fts-gkfw" }, { "vulnerability": "VCID-a2st-585f-uucu" }, { "vulnerability": "VCID-bn83-d2qp-9bfy" }, { "vulnerability": "VCID-fcsb-dn49-47gy" }, { "vulnerability": "VCID-gqzt-rh1w-jkfu" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-nqqc-u8d5-8qf6" }, { "vulnerability": "VCID-rcu5-gpmt-r7cb" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" }, { "vulnerability": "VCID-ygdw-ymrf-kqg1" }, { "vulnerability": "VCID-znkr-fxtj-4uc7" }, { "vulnerability": "VCID-zxzn-25zt-ukct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-11-main@3.11.15-4%3Farch=hum1" }, { "url": "http://public2.vulnerablecode.io/api/packages/87265?format=api", "purl": "pkg:rpm/redhat/python3.12@3.12.1-4.el9_4?arch=11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.1-4.el9_4%3Farch=11" }, { "url": "http://public2.vulnerablecode.io/api/packages/87264?format=api", "purl": "pkg:rpm/redhat/python3.12@3.12.9-1.el9_6?arch=6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.9-1.el9_6%3Farch=6" }, { "url": "http://public2.vulnerablecode.io/api/packages/87269?format=api", "purl": "pkg:rpm/redhat/python3.12@3.12.9-2.el10_0?arch=7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.9-2.el10_0%3Farch=7" }, { "url": "http://public2.vulnerablecode.io/api/packages/87272?format=api", "purl": "pkg:rpm/redhat/python3.12@3.12.12-3?arch=el8_10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-8b19-pezx-6bcd" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.12-3%3Farch=el8_10" }, { "url": "http://public2.vulnerablecode.io/api/packages/87274?format=api", "purl": "pkg:rpm/redhat/python3.12@3.12.12-3.el10_1?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-8b19-pezx-6bcd" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.12-3.el10_1%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/87260?format=api", "purl": "pkg:rpm/redhat/python3.12@3.12.12-4.el9_7?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.12-4.el9_7%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072977?format=api", "purl": "pkg:rpm/redhat/python3-12-main@3.12.13-3?arch=hum1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pr1-jkqa-43g6" }, { "vulnerability": "VCID-1uk5-6yqb-dyb5" }, { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-8b19-pezx-6bcd" }, { "vulnerability": "VCID-8dtv-379a-wqfs" }, { "vulnerability": "VCID-94n7-6q4s-3udv" }, { "vulnerability": "VCID-9vcx-2fts-gkfw" }, { "vulnerability": "VCID-a2st-585f-uucu" }, { "vulnerability": "VCID-bn83-d2qp-9bfy" }, { "vulnerability": "VCID-fcsb-dn49-47gy" }, { "vulnerability": "VCID-gqzt-rh1w-jkfu" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-nqqc-u8d5-8qf6" }, { "vulnerability": "VCID-rcu5-gpmt-r7cb" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" }, { "vulnerability": "VCID-ygdw-ymrf-kqg1" }, { "vulnerability": "VCID-znkr-fxtj-4uc7" }, { "vulnerability": "VCID-zxzn-25zt-ukct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-12-main@3.12.13-3%3Farch=hum1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1077875?format=api", "purl": "pkg:rpm/redhat/python3-13-main@3.13.12-2?arch=hum1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-13-main@3.13.12-2%3Farch=hum1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1076541?format=api", "purl": "pkg:rpm/redhat/python3-14-main@3.14.4-2?arch=hum1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-a2st-585f-uucu" }, { "vulnerability": "VCID-rcu5-gpmt-r7cb" }, { "vulnerability": "VCID-ygdw-ymrf-kqg1" }, { "vulnerability": "VCID-zxzn-25zt-ukct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-14-main@3.14.4-2%3Farch=hum1" }, { "url": "http://public2.vulnerablecode.io/api/packages/87268?format=api", "purl": "pkg:rpm/redhat/python3.9@3.9.10-4.el9_0?arch=9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.10-4.el9_0%3Farch=9" }, { "url": "http://public2.vulnerablecode.io/api/packages/87277?format=api", "purl": "pkg:rpm/redhat/python3.9@3.9.16-1.el9_2?arch=12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.16-1.el9_2%3Farch=12" }, { "url": "http://public2.vulnerablecode.io/api/packages/87270?format=api", "purl": "pkg:rpm/redhat/python3.9@3.9.18-3.el9_4?arch=11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.18-3.el9_4%3Farch=11" }, { "url": "http://public2.vulnerablecode.io/api/packages/87263?format=api", "purl": "pkg:rpm/redhat/python3.9@3.9.21-2.el9_6?arch=4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.21-2.el9_6%3Farch=4" }, { "url": "http://public2.vulnerablecode.io/api/packages/87276?format=api", "purl": "pkg:rpm/redhat/python3.9@3.9.25-3.el9_7?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-39e1-7qrc-53av" }, { "vulnerability": "VCID-8b19-pezx-6bcd" }, { "vulnerability": "VCID-kn9b-2gxw-gqgx" }, { "vulnerability": "VCID-uf5s-kms5-g7a9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.25-3.el9_7%3Farch=1" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15366.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15366.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-15366", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23923", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23597", "published_at": "2026-05-12T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23796", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23763", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23647", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23636", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23601", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23478", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2356", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23628", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23577", "published_at": "2026-05-11T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23964", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23752", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23823", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2387", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23885", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23841", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23784", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-15366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15366" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1136208", "reference_id": "1136208", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1136208" }, { "reference_url": "https://github.com/python/cpython/issues/143921", "reference_id": "143921", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:32Z/" } ], "url": "https://github.com/python/cpython/issues/143921" }, { "reference_url": "https://github.com/python/cpython/pull/143922", "reference_id": "143922", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:32Z/" } ], "url": "https://github.com/python/cpython/pull/143922" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431368", "reference_id": "2431368", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431368" }, { "reference_url": "https://github.com/python/cpython/commit/6262704b134db2a4ba12e85ecfbd968534f28b45", "reference_id": "6262704b134db2a4ba12e85ecfbd968534f28b45", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:32Z/" } ], "url": "https://github.com/python/cpython/commit/6262704b134db2a4ba12e85ecfbd968534f28b45" }, { "reference_url": "https://mail.python.org/archives/list/security-announce@python.org/thread/DD7C7JZJYTBXMDOWKCEIEBJLBRU64OMR/", "reference_id": "DD7C7JZJYTBXMDOWKCEIEBJLBRU64OMR", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:32Z/" } ], "url": "https://mail.python.org/archives/list/security-announce@python.org/thread/DD7C7JZJYTBXMDOWKCEIEBJLBRU64OMR/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:16174", "reference_id": "RHSA-2026:16174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:16174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:2128", "reference_id": "RHSA-2026:2128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:2128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4165", "reference_id": "RHSA-2026:4165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4168", "reference_id": "RHSA-2026:4168", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4168" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4216", "reference_id": "RHSA-2026:4216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4463", "reference_id": "RHSA-2026:4463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4473", "reference_id": "RHSA-2026:4473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4713", "reference_id": "RHSA-2026:4713", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4713" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4746", "reference_id": "RHSA-2026:4746", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4746" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4943", "reference_id": "RHSA-2026:4943", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4943" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5152", "reference_id": "RHSA-2026:5152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5215", "reference_id": "RHSA-2026:5215", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5215" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5216", "reference_id": "RHSA-2026:5216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5218", "reference_id": "RHSA-2026:5218", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5218" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5219", "reference_id": "RHSA-2026:5219", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5219" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5221", "reference_id": "RHSA-2026:5221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5223", "reference_id": "RHSA-2026:5223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5225", "reference_id": "RHSA-2026:5225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5225" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5226", "reference_id": "RHSA-2026:5226", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5226" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5315", "reference_id": "RHSA-2026:5315", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5315" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5393", "reference_id": "RHSA-2026:5393", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5393" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5399", "reference_id": "RHSA-2026:5399", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5399" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5606", "reference_id": "RHSA-2026:5606", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5606" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5979", "reference_id": "RHSA-2026:5979", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5979" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6007", "reference_id": "RHSA-2026:6007", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6007" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6008", "reference_id": "RHSA-2026:6008", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6008" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6253", "reference_id": "RHSA-2026:6253", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6253" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6464", "reference_id": "RHSA-2026:6464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7329", "reference_id": "RHSA-2026:7329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:7329" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8746", "reference_id": "RHSA-2026:8746", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8746" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8747", "reference_id": "RHSA-2026:8747", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8747" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8748", "reference_id": "RHSA-2026:8748", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8748" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8822", "reference_id": "RHSA-2026:8822", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8824", "reference_id": "RHSA-2026:8824", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8824" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9228", "reference_id": "RHSA-2026:9228", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9228" }, { "reference_url": "https://usn.ubuntu.com/8018-1/", "reference_id": "USN-8018-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8018-1/" }, { "reference_url": "https://usn.ubuntu.com/8018-2/", "reference_id": "USN-8018-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8018-2/" } ], "weaknesses": [ { "cwe_id": 77, "name": "Improper Neutralization of Special Elements used in a Command ('Command Injection')", "description": "The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component." } ], "exploits": [], "severity_range_score": "5.9 - 7.1", "exploitability": "0.5", "weighted_severity": "6.4", "risk_score": 3.2, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-39e1-7qrc-53av" }