{"@context":"https://openvex.dev/ns/v0.2.0","@id":"pkg:docker/synthetics-private-location-worker-fips@1.59.0","author":"security@datadoghq.com","author_role":"Vulnerability Management","last_updated":"2026-05-14T11:43:57.526864294Z","statements":[{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491206Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491205Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491205Z","vulnerability":{"name":"CVE-2025-66030"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491254Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491254Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491254Z","vulnerability":{"name":"CVE-2026-34978"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491291Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491291Z","products":[{"@id":"pkg:npm/basic-ftp@5.0.3"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491291Z","vulnerability":{"name":"CVE-2026-41324"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491332Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491332Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.491332Z","vulnerability":{"name":"CVE-2026-39820"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491374Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491374Z","products":[{"@id":"pkg:npm/path-to-regexp@0.1.12"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491374Z","vulnerability":{"name":"CVE-2026-4867"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49144Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.49144Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.49144Z","vulnerability":{"name":"CVE-2026-25646"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491484Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491484Z","products":[{"@id":"pkg:npm/jsonpath@1.1.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491484Z","vulnerability":{"name":"CVE-2025-61140"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491521Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491521Z","products":[{"@id":"pkg:deb/ubuntu/libtasn1-6@4.19.0-3ubuntu0.24.04.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.49152Z","vulnerability":{"name":"CVE-2025-13151"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491591Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491591Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.491591Z","vulnerability":{"name":"CVE-2026-1502"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491634Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491634Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491633Z","vulnerability":{"name":"CVE-2025-64720"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491677Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491677Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491677Z","vulnerability":{"name":"CVE-2025-50952"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491719Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491719Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491719Z","vulnerability":{"name":"CVE-2025-59375"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491769Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491769Z","products":[{"@id":"pkg:deb/ubuntu/coreutils@9.4-3ubuntu6?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491769Z","vulnerability":{"name":"CVE-2025-5278"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491812Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491811Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.491811Z","vulnerability":{"name":"CVE-2025-22919"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491945Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491945Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491945Z","vulnerability":{"name":"CVE-2026-33846"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491996Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491996Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.491996Z","vulnerability":{"name":"CVE-2025-2177"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492198Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492198Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.492198Z","vulnerability":{"name":"CVE-2025-2176"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492284Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492284Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.492283Z","vulnerability":{"name":"CVE-2024-36616"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492412Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492412Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.492412Z","vulnerability":{"name":"CVE-2026-0988"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492454Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.492454Z","products":[{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=elfutils"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.492454Z","vulnerability":{"name":"CVE-2025-1352"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492497Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492497Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:14:55.492497Z","vulnerability":{"name":"CVE-2026-6385"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492628Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492628Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:14:55.492627Z","vulnerability":{"name":"CVE-2025-15281"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492733Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492733Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.492733Z","vulnerability":{"name":"CVE-2026-4437"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492834Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492834Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.492834Z","vulnerability":{"name":"CVE-2026-33894"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492883Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492883Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.492883Z","vulnerability":{"name":"CVE-2025-10148"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492926Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492926Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.492926Z","vulnerability":{"name":"CVE-2026-28387"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.492982Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.492982Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.492982Z","vulnerability":{"name":"CVE-2026-25679"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502059Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502059Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.502059Z","vulnerability":{"name":"CVE-2026-32281"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502108Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502108Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.502108Z","vulnerability":{"name":"CVE-2026-32280"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502153Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502153Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.502153Z","vulnerability":{"name":"CVE-2026-32283"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502199Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502199Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.502199Z","vulnerability":{"name":"CVE-2025-15079"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493027Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493027Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493027Z","vulnerability":{"name":"CVE-2025-65018"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502248Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502248Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.502248Z","vulnerability":{"name":"CVE-2026-42011"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502311Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502311Z","products":[{"@id":"pkg:npm/brace-expansion@1.1.11"},{"@id":"pkg:npm/brace-expansion@2.0.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.502311Z","vulnerability":{"name":"CVE-2026-33750"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502407Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502407Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.502407Z","vulnerability":{"name":"CVE-2025-47907"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502469Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502469Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.502468Z","vulnerability":{"name":"CVE-2025-13837"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502517Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502517Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.502517Z","vulnerability":{"name":"CVE-2025-58187"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502612Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.502612Z","products":[{"@id":"pkg:deb/ubuntu/xdg-utils@1.1.3-4.1ubuntu3?arch=all\u0026distro=ubuntu-24.04"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.502612Z","vulnerability":{"name":"CVE-2022-4055"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502674Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502673Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.502673Z","vulnerability":{"name":"CVE-2025-55130"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502731Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502731Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.50273Z","vulnerability":{"name":"CVE-2026-33811"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502783Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502783Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.502783Z","vulnerability":{"name":"CVE-2025-61729"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502825Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502824Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.502824Z","vulnerability":{"name":"CVE-2023-49528"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502962Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502962Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.502961Z","vulnerability":{"name":"CVE-2026-27140"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503001Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503001Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.503001Z","vulnerability":{"name":"CVE-2025-68160"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503078Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503078Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.503078Z","vulnerability":{"name":"CVE-2025-6075"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503132Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503132Z","products":[{"@id":"pkg:deb/ubuntu/libnghttp2-14@1.59.0-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nghttp2"}],"status":"affected","timestamp":"2026-05-14T10:14:55.503132Z","vulnerability":{"name":"CVE-2026-27135"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503182Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503182Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:14:55.503181Z","vulnerability":{"name":"CVE-2025-9165"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50323Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503229Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.503229Z","vulnerability":{"name":"CVE-2026-3783"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50328Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50328Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.50328Z","vulnerability":{"name":"CVE-2024-31582"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503419Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503419Z","products":[{"@id":"pkg:npm/bn.js@4.11.8"}],"status":"affected","timestamp":"2026-05-14T10:14:55.503419Z","vulnerability":{"name":"CVE-2026-2739"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503472Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503472Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.503472Z","vulnerability":{"name":"CVE-2025-47912"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503538Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503538Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.503538Z","vulnerability":{"name":"CVE-2026-2297"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503583Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503583Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.503583Z","vulnerability":{"name":"CVE-2026-34980"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503651Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.503651Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:14:55.503651Z","vulnerability":{"name":"CVE-2026-40227"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.503911Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50391Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.50391Z","vulnerability":{"name":"CVE-2025-59733"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504056Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.504056Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.504056Z","vulnerability":{"name":"CVE-2026-34933"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504173Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.504173Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.504172Z","vulnerability":{"name":"CVE-2026-0992"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504216Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.504216Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.504216Z","vulnerability":{"name":"CVE-2025-61728"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504265Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.504265Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.504265Z","vulnerability":{"name":"CVE-2025-61724"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504339Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.504339Z","products":[{"@id":"pkg:golang/golang.org/x/net@v0.34.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.504338Z","vulnerability":{"name":"CVE-2025-22870"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504391Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50439Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.50439Z","vulnerability":{"name":"CVE-2023-48727"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504441Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50444Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:14:55.50444Z","vulnerability":{"name":"CVE-2026-0915"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504555Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.504555Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.504555Z","vulnerability":{"name":"CVE-2026-0989"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504602Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.504602Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:14:55.504602Z","vulnerability":{"name":"CVE-2025-61144"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504653Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.504653Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.504652Z","vulnerability":{"name":"CVE-2025-14524"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.504754Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.504754Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.504754Z","vulnerability":{"name":"CVE-2025-64506"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.5048Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.5048Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:14:55.5048Z","vulnerability":{"name":"CVE-2026-29111"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.505079Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.505079Z","products":[{"@id":"pkg:deb/ubuntu/dpkg@1.22.6ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.505079Z","vulnerability":{"name":"CVE-2026-2219"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50513Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50513Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.50513Z","vulnerability":{"name":"CVE-2026-22795"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.505183Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.505183Z","products":[{"@id":"pkg:deb/ubuntu/libicu74@74.2-1ubuntu3.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=icu"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.505183Z","vulnerability":{"name":"CVE-2025-5222"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.505245Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.505245Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.505245Z","vulnerability":{"name":"CVE-2025-59732"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.505293Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.505293Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:14:55.505292Z","vulnerability":{"name":"CVE-2025-59734"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.505518Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.505518Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.505518Z","vulnerability":{"name":"CVE-2025-59728"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.505566Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.505566Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.505566Z","vulnerability":{"name":"CVE-2025-59731"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.505786Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.505786Z","products":[{"@id":"pkg:deb/ubuntu/libvpx9@1.14.0-1ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libvpx"}],"status":"affected","timestamp":"2026-05-14T10:14:55.505785Z","vulnerability":{"name":"CVE-2026-2447"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.505834Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.505834Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.505834Z","vulnerability":{"name":"CVE-2023-50007"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.505969Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.505969Z","products":[{"@id":"pkg:pypi/wheel@0.45.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.505969Z","vulnerability":{"name":"CVE-2026-24049"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506017Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506017Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.506016Z","vulnerability":{"name":"CVE-2023-22656"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506087Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506087Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.506086Z","vulnerability":{"name":"CVE-2026-21714"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506139Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506139Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.506138Z","vulnerability":{"name":"CVE-2026-1489"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50618Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50618Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.50618Z","vulnerability":{"name":"CVE-2026-22801"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506222Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506222Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.506222Z","vulnerability":{"name":"CVE-2025-28162"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506274Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506274Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.506274Z","vulnerability":{"name":"CVE-2025-28164"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506325Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506325Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.506325Z","vulnerability":{"name":"CVE-2026-1484"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506374Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506374Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.506374Z","vulnerability":{"name":"CVE-2025-8732"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506422Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506422Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"affected","timestamp":"2026-05-14T10:14:55.506422Z","vulnerability":{"name":"CVE-2025-50422"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506494Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506494Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.506494Z","vulnerability":{"name":"CVE-2026-39826"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506538Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506538Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.506538Z","vulnerability":{"name":"CVE-2026-39817"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506587Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506587Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:14:55.506587Z","vulnerability":{"name":"CVE-2025-8114"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506649Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506649Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.506649Z","vulnerability":{"name":"CVE-2026-39314"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506701Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506701Z","products":[{"@id":"pkg:deb/ubuntu/libfreetype6@2.13.2%2Bdfsg-1build3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=freetype"}],"status":"affected","timestamp":"2026-05-14T10:14:55.5067Z","vulnerability":{"name":"CVE-2026-23865"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506754Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506754Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.506754Z","vulnerability":{"name":"CVE-2026-34757"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.506802Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.506802Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.3"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.506802Z","vulnerability":{"name":"CVE-2026-27456"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.507071Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.507071Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.507071Z","vulnerability":{"name":"CVE-2024-36617"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.507218Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.507218Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-05-14T10:14:55.507218Z","vulnerability":{"name":"CVE-2025-68471"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50733Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50733Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.50733Z","vulnerability":{"name":"CVE-2026-6429"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.507376Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.507376Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:14:55.507376Z","vulnerability":{"name":"CVE-2026-40223"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.507635Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.507634Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.507634Z","vulnerability":{"name":"CVE-2026-42501"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.507685Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.507685Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.507685Z","vulnerability":{"name":"CVE-2026-39825"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.507733Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.507733Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.507733Z","vulnerability":{"name":"CVE-2025-58189"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.507776Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.507776Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.507776Z","vulnerability":{"name":"CVE-2026-6253"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.507824Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.507823Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.507823Z","vulnerability":{"name":"CVE-2026-39316"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.507871Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.507871Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:14:55.507871Z","vulnerability":{"name":"CVE-2026-40228"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508159Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508159Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.508159Z","vulnerability":{"name":"CVE-2025-58183"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508213Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508213Z","products":[{"@id":"pkg:npm/ajv@8.5.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.508213Z","vulnerability":{"name":"CVE-2025-69873"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508264Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508264Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.508264Z","vulnerability":{"name":"CVE-2026-39823"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508332Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508331Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.508331Z","vulnerability":{"name":"CVE-2025-61731"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50838Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50838Z","products":[{"@id":"pkg:npm/jws@3.2.2"},{"@id":"pkg:npm/jws@4.0.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.50838Z","vulnerability":{"name":"CVE-2025-65945"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508458Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508458Z","products":[{"@id":"pkg:deb/ubuntu/libgcrypt20@1.10.3-2build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.508458Z","vulnerability":{"name":"CVE-2026-41989"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508504Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508504Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:14:55.508504Z","vulnerability":{"name":"CVE-2026-0964"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508556Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508556Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.508556Z","vulnerability":{"name":"CVE-2026-41079"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50866Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50866Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:14:55.50866Z","vulnerability":{"name":"CVE-2025-8176"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508708Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508708Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.508708Z","vulnerability":{"name":"CVE-2026-27142"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508754Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508754Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.508754Z","vulnerability":{"name":"CVE-2026-22863"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508804Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508804Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"affected","timestamp":"2026-05-14T10:14:55.508804Z","vulnerability":{"name":"CVE-2026-6192"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.508856Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.508856Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:14:55.508856Z","vulnerability":{"name":"CVE-2026-40224"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509126Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509126Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509126Z","vulnerability":{"name":"CVE-2026-27447"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509178Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509178Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509178Z","vulnerability":{"name":"CVE-2025-68468"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509303Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509303Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509303Z","vulnerability":{"name":"CVE-2026-34990"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509346Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509346Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509346Z","vulnerability":{"name":"CVE-2025-64505"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509391Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509391Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.509391Z","vulnerability":{"name":"CVE-2025-61786"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509434Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509434Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509434Z","vulnerability":{"name":"CVE-2025-58188"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509483Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509483Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509483Z","vulnerability":{"name":"CVE-2026-3784"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509529Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509529Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.509529Z","vulnerability":{"name":"CVE-2026-21713"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509574Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509573Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509573Z","vulnerability":{"name":"CVE-2026-23950"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509628Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509627Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.509627Z","vulnerability":{"name":"CVE-2023-39328"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509675Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.509675Z","products":[{"@id":"pkg:deb/ubuntu/libvo-amrwbenc0@0.1.3-2build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=vo-amrwbenc"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.509675Z","vulnerability":{"name":"CVE-2019-2128"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509729Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509729Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509729Z","vulnerability":{"name":"CVE-2026-31802"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50978Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50978Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.50978Z","vulnerability":{"name":"CVE-2026-29786"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509829Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509829Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509829Z","vulnerability":{"name":"CVE-2026-32289"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509885Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509885Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.509883Z","vulnerability":{"name":"CVE-2023-47282"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.509932Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.509932Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.509932Z","vulnerability":{"name":"CVE-2026-26960"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.5101Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510099Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.510099Z","vulnerability":{"name":"CVE-2025-61732"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510177Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510177Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.510176Z","vulnerability":{"name":"CVE-2025-4674"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510235Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510235Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:14:55.510235Z","vulnerability":{"name":"CVE-2026-0968"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510289Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510288Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.510288Z","vulnerability":{"name":"CVE-2025-13601"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510344Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510344Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.510344Z","vulnerability":{"name":"CVE-2026-23745"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510395Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510394Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.510394Z","vulnerability":{"name":"CVE-2026-5773"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510446Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510446Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.510445Z","vulnerability":{"name":"CVE-2025-61785"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510498Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510498Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.510498Z","vulnerability":{"name":"CVE-2026-32282"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510553Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510553Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.510553Z","vulnerability":{"name":"CVE-2026-31789"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510604Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510604Z","products":[{"@id":"pkg:npm/%40tootallnate/once@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.510604Z","vulnerability":{"name":"CVE-2026-3449"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510657Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510656Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:14:55.510656Z","vulnerability":{"name":"CVE-2026-0861"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510778Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510778Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:14:55.510778Z","vulnerability":{"name":"CVE-2025-8058"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.510886Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.510886Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:14:55.510886Z","vulnerability":{"name":"CVE-2026-40962"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511014Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511014Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:14:55.511014Z","vulnerability":{"name":"CVE-2026-40226"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511286Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511286Z","products":[{"@id":"pkg:deb/ubuntu/libcap2@1%3A2.66-5ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcap2-bin@1%3A2.66-5ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libcap2"}],"status":"affected","timestamp":"2026-05-14T10:14:55.511286Z","vulnerability":{"name":"CVE-2026-4878"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.51137Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511369Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.511369Z","vulnerability":{"name":"CVE-2025-14017"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511415Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511415Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.511415Z","vulnerability":{"name":"CVE-2025-61730"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.51146Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.51146Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.51146Z","vulnerability":{"name":"CVE-2025-61727"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511528Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511528Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.511528Z","vulnerability":{"name":"CVE-2025-55132"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511596Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511596Z","products":[{"@id":"pkg:deb/ubuntu/sudo@1.9.15p5-3ubuntu5.24.04.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.511595Z","vulnerability":{"name":"CVE-2026-35535"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511653Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511652Z","products":[{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"}],"status":"affected","timestamp":"2026-05-14T10:14:55.511652Z","vulnerability":{"name":"CVE-2022-3219"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511706Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511706Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:14:55.511706Z","vulnerability":{"name":"CVE-2025-61143"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511773Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511773Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.511773Z","vulnerability":{"name":"CVE-2025-61145"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511827Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511827Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.511827Z","vulnerability":{"name":"CVE-2026-27144"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511883Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511883Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.511883Z","vulnerability":{"name":"CVE-2025-9714"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.511946Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.511946Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.511946Z","vulnerability":{"name":"CVE-2025-66382"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512015Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512015Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.512015Z","vulnerability":{"name":"CVE-2026-4519"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512084Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512084Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.512084Z","vulnerability":{"name":"CVE-2026-39819"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512133Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512133Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.512132Z","vulnerability":{"name":"CVE-2025-69418"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512186Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512186Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.512186Z","vulnerability":{"name":"CVE-2026-4873"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512229Z","impact_statement":"The Firequalizer is an advanced IIR-based audio equalization filter residing in FFmpeg's libavfilter module. Firefox does not use FFmpeg's filter graph (libavfilter) at any point during media playback or audio processing. The libavfilter library is separate from the codec libraries used by the OS and is not invoked by the browser runtime. This filter can only be triggered by explicitly constructing an FFmpeg filter chain, an operation absent from this deployment's execution paths.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.512229Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.512229Z","vulnerability":{"name":"CVE-2025-10256"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512395Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512395Z","products":[{"@id":"pkg:deb/ubuntu/libasound2@1.2.6.1-1ubuntu1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=alsa-lib"},{"@id":"pkg:deb/ubuntu/libasound2-data@1.2.11-1ubuntu0.1?arch=all\u0026distro=ubuntu-24.04\u0026upstream=alsa-lib"}],"status":"affected","timestamp":"2026-05-14T10:14:55.512394Z","vulnerability":{"name":"CVE-2026-25068"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512475Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512475Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:14:55.512475Z","vulnerability":{"name":"CVE-2026-25210"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512525Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512525Z","products":[{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"}],"status":"affected","timestamp":"2026-05-14T10:14:55.512525Z","vulnerability":{"name":"CVE-2025-69720"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512724Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512724Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:14:55.512724Z","vulnerability":{"name":"CVE-2026-24515"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512791Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.51279Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.51279Z","vulnerability":{"name":"CVE-2026-1485"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512852Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512852Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-05-14T10:14:55.512852Z","vulnerability":{"name":"CVE-2025-68276"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.512997Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.512996Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.512996Z","vulnerability":{"name":"CVE-2025-13462"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513074Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513074Z","products":[{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=elfutils"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.513074Z","vulnerability":{"name":"CVE-2025-1376"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513145Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513145Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.513145Z","vulnerability":{"name":"CVE-2025-9820"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513191Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513191Z","products":[{"@id":"pkg:deb/ubuntu/zlib1g@1%3A1.3.dfsg-3.1ubuntu2.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zlib"}],"status":"affected","timestamp":"2026-05-14T10:14:55.513191Z","vulnerability":{"name":"CVE-2026-27171"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513233Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513233Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:14:55.513233Z","vulnerability":{"name":"CVE-2026-32776"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513274Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513274Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:14:55.513274Z","vulnerability":{"name":"CVE-2026-32778"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513319Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513319Z","products":[{"@id":"pkg:deb/ubuntu/sed@4.9-2build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.513319Z","vulnerability":{"name":"CVE-2026-5958"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.51349Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.51349Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:14:55.51349Z","vulnerability":{"name":"CVE-2026-32777"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513654Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513654Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.513653Z","vulnerability":{"name":"CVE-2026-6276"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513726Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513726Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.513725Z","vulnerability":{"name":"CVE-2026-32288"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513779Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513779Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:14:55.513779Z","vulnerability":{"name":"CVE-2026-0965"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513859Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513858Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.513858Z","vulnerability":{"name":"CVE-2026-45186"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.513931Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.513931Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.513931Z","vulnerability":{"name":"CVE-2026-27139"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514031Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514031Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.514031Z","vulnerability":{"name":"CVE-2026-21715"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514092Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514092Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.514092Z","vulnerability":{"name":"CVE-2026-21716"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514156Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514156Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.514156Z","vulnerability":{"name":"CVE-2025-22873"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514215Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514215Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.514215Z","vulnerability":{"name":"CVE-2026-3479"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514261Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514261Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:14:55.514261Z","vulnerability":{"name":"CVE-2025-12343"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514421Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514421Z","products":[{"@id":"pkg:npm/basic-ftp@5.0.3"}],"status":"affected","timestamp":"2026-05-14T10:14:55.514421Z","vulnerability":{"name":"GHSA-6v7q-wjvx-w8wg"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514482Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514481Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.514481Z","vulnerability":{"name":"CVE-2026-44289"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514529Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514529Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.514529Z","vulnerability":{"name":"CVE-2026-44290"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514816Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514815Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.514815Z","vulnerability":{"name":"CVE-2026-44291"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.514919Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.514919Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.514919Z","vulnerability":{"name":"CVE-2026-44293"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515003Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515003Z","products":[{"@id":"pkg:npm/%40protobufjs/utf8@1.1.0"},{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.515002Z","vulnerability":{"name":"CVE-2026-44288"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515076Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515076Z","products":[{"@id":"pkg:npm/follow-redirects@1.15.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.515075Z","vulnerability":{"name":"GHSA-r4q5-vmmm-2653"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515132Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515132Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.515132Z","vulnerability":{"name":"CVE-2026-42009"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515173Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515173Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.515172Z","vulnerability":{"name":"CVE-2026-42012"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515209Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515209Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.515209Z","vulnerability":{"name":"CVE-2026-42013"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515337Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515337Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.515336Z","vulnerability":{"name":"CVE-2026-42014"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515384Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515384Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.515383Z","vulnerability":{"name":"CVE-2026-42015"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515426Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515426Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.515426Z","vulnerability":{"name":"CVE-2026-5260"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515474Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515474Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.515474Z","vulnerability":{"name":"CVE-2026-5419"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515562Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515562Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.515562Z","vulnerability":{"name":"CVE-2026-44292"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515602Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515602Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.515601Z","vulnerability":{"name":"CVE-2026-44294"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515639Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515638Z","products":[{"@id":"pkg:npm/%40smithy/config-resolver@1.0.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.515638Z","vulnerability":{"name":"GHSA-6475-r3vj-m8vf"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.515684Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.515684Z","products":[{"@id":"pkg:npm/aws-sdk@2.1370.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.515684Z","vulnerability":{"name":"GHSA-j965-2qgj-vjmq"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.484176Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484176Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.484176Z","vulnerability":{"name":"CVE-2024-47175"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.484269Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484267Z","products":[{"@id":"pkg:generic/haproxy@2.4.28"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.484267Z","vulnerability":{"name":"CVE-2025-32464"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.484326Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484325Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.484325Z","vulnerability":{"name":"CVE-2025-15467"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48437Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.48437Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.48437Z","vulnerability":{"name":"CVE-2024-35235"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.484415Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484414Z","products":[{"@id":"pkg:deb/ubuntu/login@1%3A4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=shadow"},{"@id":"pkg:deb/ubuntu/passwd@1%3A4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=shadow"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.484414Z","vulnerability":{"name":"CVE-2024-56433"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48454Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484539Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.484539Z","vulnerability":{"name":"CVE-2025-6021"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.484578Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484578Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.484578Z","vulnerability":{"name":"CVE-2025-49796"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.484617Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484617Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.484617Z","vulnerability":{"name":"CVE-2026-27190"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48468Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.48468Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.484679Z","vulnerability":{"name":"CVE-2025-6069"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.484723Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484722Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.484722Z","vulnerability":{"name":"CVE-2025-69420"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.484763Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484763Z","products":[{"@id":"pkg:deb/ubuntu/libgdk-pixbuf-2.0-0@2.42.10%2Bdfsg-3ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gdk-pixbuf"},{"@id":"pkg:deb/ubuntu/libgdk-pixbuf2.0-common@2.42.10%2Bdfsg-3ubuntu3.2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=gdk-pixbuf"}],"status":"affected","timestamp":"2026-05-14T10:14:55.484763Z","vulnerability":{"name":"CVE-2026-5201"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48487Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484869Z","products":[{"@id":"pkg:generic/haproxy@2.4.28"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.484869Z","vulnerability":{"name":"CVE-2025-11230"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.484914Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.484914Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.4?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"affected","timestamp":"2026-05-14T10:14:55.484914Z","vulnerability":{"name":"CVE-2024-10963"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485032Z","impact_statement":"Firefox does not support JPEG 2000 and does not invoke FFmpeg's jpeg2000dec decoder. The channel definition cdef atom is a JPEG 2000 container construct that would only be processed by explicitly running FFmpeg against a crafted JPEG 2000 file. No such execution path exists in the Synthetics Worker.","justification":"vulnerable_code_not_present","last_updated":"2026-05-14T10:14:55.485032Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.485032Z","vulnerability":{"name":"CVE-2025-9951"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48522Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.48522Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.48522Z","vulnerability":{"name":"CVE-2025-22871"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485268Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485267Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.485267Z","vulnerability":{"name":"CVE-2025-49794"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485305Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485305Z","products":[{"@id":"pkg:deb/ubuntu/libgcrypt20@1.10.3-2build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.485305Z","vulnerability":{"name":"CVE-2024-2236"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485363Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485363Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.485363Z","vulnerability":{"name":"CVE-2025-8194"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485408Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485408Z","products":[{"@id":"pkg:deb/ubuntu/libjpeg-turbo8@2.1.5-2ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libjpeg-turbo"}],"status":"affected","timestamp":"2026-05-14T10:14:55.485408Z","vulnerability":{"name":"CVE-2018-10126"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485447Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485446Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.485446Z","vulnerability":{"name":"CVE-2024-41996"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485511Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485511Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.485511Z","vulnerability":{"name":"CVE-2025-48934"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485551Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485551Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:14:55.485551Z","vulnerability":{"name":"CVE-2024-32228"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485666Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485666Z","products":[{"@id":"pkg:deb/ubuntu/wget@1.21.4-1ubuntu4.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.485665Z","vulnerability":{"name":"CVE-2024-10524"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48571Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.48571Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.48571Z","vulnerability":{"name":"CVE-2024-31578"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48584Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.48584Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.48584Z","vulnerability":{"name":"CVE-2025-13836"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485881Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485881Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.485881Z","vulnerability":{"name":"CVE-2018-18064"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.485993Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.485993Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.485993Z","vulnerability":{"name":"CVE-2025-21620"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486034Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486033Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.486033Z","vulnerability":{"name":"CVE-2025-2173"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486132Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486131Z","products":[{"@id":"pkg:npm/basic-ftp@5.0.3"}],"status":"affected","timestamp":"2026-05-14T10:14:55.486131Z","vulnerability":{"name":"CVE-2026-27699"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486194Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486194Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.486194Z","vulnerability":{"name":"CVE-2026-6100"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486236Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486236Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.486236Z","vulnerability":{"name":"CVE-2025-48888"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486287Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486287Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.486287Z","vulnerability":{"name":"CVE-2023-49502"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486406Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486406Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.486406Z","vulnerability":{"name":"CVE-2026-22796"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486459Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486459Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.486459Z","vulnerability":{"name":"CVE-2025-3360"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486503Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486503Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.486503Z","vulnerability":{"name":"CVE-2024-35368"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486617Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486617Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.486616Z","vulnerability":{"name":"CVE-2024-35365"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486748Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486748Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.486748Z","vulnerability":{"name":"CVE-2024-35366"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486886Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486885Z","products":[{"@id":"pkg:deb/ubuntu/libllvm19@1%3A19.1.1-1ubuntu1~24.04.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=llvm-toolchain-19"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.486885Z","vulnerability":{"name":"CVE-2024-7883"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486923Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486923Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.486923Z","vulnerability":{"name":"CVE-2025-24015"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.486964Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.486964Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.486964Z","vulnerability":{"name":"CVE-2025-0167"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487007Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.487007Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.487007Z","vulnerability":{"name":"CVE-2019-6988"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487063Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.487062Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.487062Z","vulnerability":{"name":"CVE-2025-7425"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487096Z","impact_statement":"libx264 is an H.264 video encoder library. The attack vector described (RCE via a crafted AAC audio file) represents an unusual cross-format exploitation path that would require libx264 to process an AAC audio stream directly — a scenario that does not occur during normal H.264 encoding operations. In the Synthetics Worker, libx264 is a transitive dependency of libavcodec-extra; Firefox may use it for H.264 video encoding in limited contexts (e.g., getUserMedia/WebRTC), but the Synthetics Worker does not execute WebRTC sessions nor does it process untrusted AAC files through any pipeline that routes to libx264. The exploitation path (attacker-supplied AAC → libx264 memory corruption) cannot be triggered by the Synthetics Worker's operational model.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.487096Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libx264-164@2%3A0.164.3108%2Bgit31e19f9-1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=x264"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.487096Z","vulnerability":{"name":"CVE-2025-25467"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487237Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.487237Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.487237Z","vulnerability":{"name":"CVE-2025-2174"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487329Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.487329Z","products":[{"@id":"pkg:npm/jsonpath@1.1.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.487329Z","vulnerability":{"name":"CVE-2026-1615"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48737Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.48737Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.48737Z","vulnerability":{"name":"CVE-2024-35367"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487497Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.487497Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.487497Z","vulnerability":{"name":"CVE-2026-0672"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487546Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.487546Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:14:55.487546Z","vulnerability":{"name":"CVE-2026-41673"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487585Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.487584Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.487584Z","vulnerability":{"name":"CVE-2025-6052"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487626Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.487626Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.487625Z","vulnerability":{"name":"CVE-2017-7475"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487684Z","impact_statement":"The TTY (TeleTYpe/terminal output capture) demuxer in FFmpeg processes a niche format entirely unrelated to web content or browser media. Firefox's media pipeline does not call FFmpeg's TTY demuxer. This code path requires that FFmpeg's demuxer subsystem be invoked on TTY-format input, which cannot occur during the Synthetics Worker's browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.487684Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.487684Z","vulnerability":{"name":"CVE-2023-6602"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487808Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.487808Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.487808Z","vulnerability":{"name":"CVE-2024-32230"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.487937Z","impact_statement":"Firefox has never supported JPEG 2000 image/video decoding (the format was only supported in Safari/WebKit). No web content served during Synthetics Worker test execution would cause Firefox to invoke FFmpeg's jpeg2000dec decoder.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.487937Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.487937Z","vulnerability":{"name":"CVE-2025-22921"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488087Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488087Z","products":[{"@id":"pkg:deb/ubuntu/wget@1.21.4-1ubuntu4.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.488087Z","vulnerability":{"name":"CVE-2021-31879"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488149Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488149Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.488148Z","vulnerability":{"name":"CVE-2025-12084"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488192Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488192Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.488192Z","vulnerability":{"name":"CVE-2026-42010"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48824Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.48824Z","products":[{"@id":"pkg:deb/ubuntu/dpkg@1.22.6ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.48824Z","vulnerability":{"name":"CVE-2025-6297"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488297Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488297Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.488297Z","vulnerability":{"name":"CVE-2026-0865"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488385Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488385Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.488385Z","vulnerability":{"name":"CVE-2025-66293"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488422Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488422Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.488422Z","vulnerability":{"name":"CVE-2025-27587"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488484Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488484Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.488484Z","vulnerability":{"name":"CVE-2025-12816"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488522Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488522Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.488522Z","vulnerability":{"name":"CVE-2025-58364"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488561Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488561Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.488561Z","vulnerability":{"name":"CVE-2025-69419"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488602Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488602Z","products":[{"@id":"pkg:deb/ubuntu/tar@1.35%2Bdfsg-3build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.488602Z","vulnerability":{"name":"CVE-2025-45582"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488638Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488638Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.488638Z","vulnerability":{"name":"CVE-2026-28389"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488685Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488684Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.488684Z","vulnerability":{"name":"CVE-2026-28390"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488734Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488734Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.488734Z","vulnerability":{"name":"CVE-2024-7055"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488847Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488847Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.488847Z","vulnerability":{"name":"CVE-2025-0518"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.488983Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.488983Z","products":[{"@id":"pkg:golang/golang.org/x/net@v0.34.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.488982Z","vulnerability":{"name":"CVE-2025-22872"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489025Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489025Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.489025Z","vulnerability":{"name":"CVE-2025-69421"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489107Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489107Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:14:55.489107Z","vulnerability":{"name":"CVE-2026-41672"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489154Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489153Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.489153Z","vulnerability":{"name":"CVE-2025-1594"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489289Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489289Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.489289Z","vulnerability":{"name":"CVE-2025-8291"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489331Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489331Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.48933Z","vulnerability":{"name":"CVE-2026-33891"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489382Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489382Z","products":[{"@id":"pkg:npm/basic-ftp@5.0.3"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.489382Z","vulnerability":{"name":"CVE-2026-44240"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489457Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489457Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.489457Z","vulnerability":{"name":"CVE-2025-59465"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489494Z","impact_statement":"This is a Remote Command Execution made available by the \"type\" fields of protobuf definitions, which will then execute during object decoding using that definition. An attacker that is authorized to run Synthetics tests that execute on that private location will be able to run JavaScript commands that inherit the execution context and permissions of the hosting Node.js process. PR #9754 fixes the issue and the release 1.67.7 will be avaiable shortly.","justification":"","last_updated":"2026-05-14T10:14:55.489494Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.489494Z","vulnerability":{"name":"CVE-2026-41242"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489543Z","impact_statement":"XBIN (eXtended BINary) is a text-art/ANSI art container format with no presence in web content. No web browser invokes FFmpeg's XBIN demuxer during normal browsing. The Synthetics Worker processes HTML pages and web assets through the browser runtime; it does not call FFmpeg's format detection or demuxing stack on any content. This attack vector (feeding arbitrary data to FFmpeg's demuxer) cannot be exercised in this deployment.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.489543Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.489543Z","vulnerability":{"name":"CVE-2023-6604"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489679Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489679Z","products":[{"@id":"pkg:generic/haproxy@2.4.28"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.489679Z","vulnerability":{"name":"CVE-2024-49214"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489722Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489722Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:14:55.489722Z","vulnerability":{"name":"CVE-2026-3731"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48978Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.48978Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.489779Z","vulnerability":{"name":"CVE-2026-3298"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489817Z","impact_statement":"avformat_free_context() is an FFmpeg-specific API call used to release AVFormatContext objects in applications that directly use libavformat. Firefox does not call FFmpeg's avformat_free_context(), it manages its own media context lifecycle via its native Gecko media framework.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.489817Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.489817Z","vulnerability":{"name":"CVE-2025-25473"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.48994Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.48994Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:14:55.48994Z","vulnerability":{"name":"CVE-2026-41674"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.489985Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.489985Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:14:55.489985Z","vulnerability":{"name":"CVE-2026-41675"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490029Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490029Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-05-14T10:14:55.490029Z","vulnerability":{"name":"CVE-2026-40355"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49019Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490189Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-05-14T10:14:55.490189Z","vulnerability":{"name":"CVE-2026-40356"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49031Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.49031Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.490309Z","vulnerability":{"name":"CVE-2025-7700"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490421Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490421Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.490421Z","vulnerability":{"name":"CVE-2025-14512"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490465Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490465Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.490465Z","vulnerability":{"name":"CVE-2025-14087"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490509Z","impact_statement":"Firefox implements MPEG-DASH adaptive streaming natively through its Gecko media engine and does not delegate DASH playlist fetching or parsing to FFmpeg's libavformat DASH demuxer. The SSRF in this CVE requires that FFmpeg actively fetch URLs specified in a DASH manifest this requires FFmpeg to be directly invoked with network I/O enabled on untrusted input, which never occurs in this deployment","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.490509Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.490509Z","vulnerability":{"name":"CVE-2023-6605"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490648Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490648Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.490648Z","vulnerability":{"name":"CVE-2025-66031"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490686Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490686Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.490686Z","vulnerability":{"name":"CVE-2025-2175"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490762Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490762Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:14:55.490762Z","vulnerability":{"name":"CVE-2026-34601"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490821Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490821Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.490821Z","vulnerability":{"name":"CVE-2025-15366"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490875Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490875Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.490875Z","vulnerability":{"name":"CVE-2025-15367"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490925Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490925Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.490925Z","vulnerability":{"name":"CVE-2025-4673"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.490968Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.490968Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.490968Z","vulnerability":{"name":"CVE-2026-3833"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491009Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491008Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.491008Z","vulnerability":{"name":"CVE-2025-63757"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.491131Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.491131Z","products":[{"@id":"pkg:npm/tmp@0.2.1"},{"@id":"pkg:npm/tmp@0.2.3"}],"status":"affected","timestamp":"2026-05-14T10:14:55.491131Z","vulnerability":{"name":"CVE-2025-54798"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493089Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493089Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.493089Z","vulnerability":{"name":"CVE-2026-4046"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493223Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493223Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.493223Z","vulnerability":{"name":"CVE-2026-21637"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493269Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493269Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493269Z","vulnerability":{"name":"CVE-2026-1965"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493311Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493311Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493311Z","vulnerability":{"name":"CVE-2026-0990"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493361Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493361Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.493361Z","vulnerability":{"name":"CVE-2023-39329"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493406Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493406Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493405Z","vulnerability":{"name":"CVE-2026-33895"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493451Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493451Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493451Z","vulnerability":{"name":"CVE-2025-61725"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493495Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493495Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493495Z","vulnerability":{"name":"CVE-2026-4739"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493534Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493533Z","products":[{"@id":"pkg:npm/lodash@4.17.21"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493533Z","vulnerability":{"name":"CVE-2026-4800"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493577Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493576Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493576Z","vulnerability":{"name":"CVE-2025-14831"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493619Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493619Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493619Z","vulnerability":{"name":"CVE-2025-15224"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493662Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493662Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493661Z","vulnerability":{"name":"CVE-2025-9900"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493706Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493706Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493706Z","vulnerability":{"name":"CVE-2025-61723"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493747Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493747Z","products":[{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493747Z","vulnerability":{"name":"CVE-2025-9232"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493792Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493792Z","products":[{"@id":"pkg:deb/ubuntu/libnss3@2%3A3.98-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nss"},{"@id":"pkg:deb/ubuntu/libnss3-tools@2%3A3.98-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nss"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493791Z","vulnerability":{"name":"CVE-2026-2781"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493853Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493853Z","products":[{"@id":"pkg:deb/ubuntu/libpixman-1-0@0.42.2-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pixman"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.493853Z","vulnerability":{"name":"CVE-2023-37769"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.493891Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.493891Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.493891Z","vulnerability":{"name":"CVE-2026-34979"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494055Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494054Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.494054Z","vulnerability":{"name":"CVE-2026-22864"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494132Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494124Z","products":[{"@id":"pkg:npm/ip-address@5.9.4"},{"@id":"pkg:npm/ip-address@9.0.5"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.494124Z","vulnerability":{"name":"CVE-2026-42338"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494213Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494212Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494212Z","vulnerability":{"name":"CVE-2025-9230"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494266Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494266Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494266Z","vulnerability":{"name":"CVE-2026-33416"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494314Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494314Z","products":[{"@id":"pkg:npm/minimatch@3.0.5"},{"@id":"pkg:npm/minimatch@5.1.6"},{"@id":"pkg:npm/minimatch@9.0.5"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494314Z","vulnerability":{"name":"CVE-2026-27903"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494413Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494412Z","products":[{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=sqlite3"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494412Z","vulnerability":{"name":"CVE-2025-7709"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494459Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494459Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494459Z","vulnerability":{"name":"CVE-2026-33636"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494504Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494504Z","products":[{"@id":"pkg:deb/ubuntu/libharfbuzz0b@8.3.0-2build2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=harfbuzz"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.494504Z","vulnerability":{"name":"CVE-2026-22693"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494617Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494617Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494617Z","vulnerability":{"name":"CVE-2026-30999"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494752Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494751Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494751Z","vulnerability":{"name":"CVE-2025-58060"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494794Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494794Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494793Z","vulnerability":{"name":"CVE-2026-4775"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.494837Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494837Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494837Z","vulnerability":{"name":"CVE-2026-31790"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49489Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.49489Z","products":[{"@id":"pkg:deb/ubuntu/libgbm1@25.0.7-0ubuntu0.24.04.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mesa"},{"@id":"pkg:deb/ubuntu/mesa-libgallium@25.0.7-0ubuntu0.24.04.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mesa"}],"status":"affected","timestamp":"2026-05-14T10:14:55.49489Z","vulnerability":{"name":"CVE-2026-40393"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49496Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.494959Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:14:55.494959Z","vulnerability":{"name":"CVE-2026-30997"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495103Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495103Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.495103Z","vulnerability":{"name":"CVE-2026-6732"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495148Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495148Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.495148Z","vulnerability":{"name":"CVE-2025-61726"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495196Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495196Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:14:55.495196Z","vulnerability":{"name":"CVE-2026-28388"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495242Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495242Z","products":[{"@id":"pkg:deb/ubuntu/xdg-utils@1.1.3-4.1ubuntu3?arch=all\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.495242Z","vulnerability":{"name":"CVE-2025-52968"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495291Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495291Z","products":[{"@id":"pkg:deb/ubuntu/libgtk-3-0@3.24.33-1ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gtk%2B3.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.495291Z","vulnerability":{"name":"CVE-2024-6655"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495467Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495467Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.495466Z","vulnerability":{"name":"CVE-2026-7210"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49552Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.49552Z","products":[{"@id":"pkg:deb/ubuntu/coreutils@9.4-3ubuntu6?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.495519Z","vulnerability":{"name":"CVE-2016-2781"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495557Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495557Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.495557Z","vulnerability":{"name":"CVE-2026-33349"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495605Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495605Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.495605Z","vulnerability":{"name":"CVE-2025-59529"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495707Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495707Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.495707Z","vulnerability":{"name":"CVE-2024-52616"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49584Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495839Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.495839Z","vulnerability":{"name":"CVE-2025-55131"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495887Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495887Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.495886Z","vulnerability":{"name":"CVE-2026-33896"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.495953Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.495953Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:14:55.495953Z","vulnerability":{"name":"CVE-2026-5450"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496078Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496078Z","products":[{"@id":"pkg:npm/tar-fs@3.0.9"}],"status":"affected","timestamp":"2026-05-14T10:14:55.496078Z","vulnerability":{"name":"CVE-2025-59343"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496146Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496146Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.496146Z","vulnerability":{"name":"CVE-2025-15282"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496207Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496206Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.496206Z","vulnerability":{"name":"CVE-2026-1299"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496257Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496257Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.496257Z","vulnerability":{"name":"CVE-2026-26278"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496295Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496295Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:14:55.496295Z","vulnerability":{"name":"CVE-2026-30998"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496433Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496433Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:14:55.496433Z","vulnerability":{"name":"CVE-2025-8534"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496475Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496475Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.496475Z","vulnerability":{"name":"CVE-2025-61915"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496583Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496583Z","products":[{"@id":"pkg:npm/brace-expansion@1.1.11"},{"@id":"pkg:npm/brace-expansion@2.0.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.496583Z","vulnerability":{"name":"CVE-2025-5889"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496663Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496663Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.496662Z","vulnerability":{"name":"CVE-2026-3644"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496708Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496708Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.496708Z","vulnerability":{"name":"CVE-2026-21710"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49677Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.49677Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.49677Z","vulnerability":{"name":"CVE-2025-12781"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496813Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496813Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.496813Z","vulnerability":{"name":"CVE-2026-33845"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496855Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496855Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:14:55.496855Z","vulnerability":{"name":"CVE-2026-5928"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.496965Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.496965Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.496965Z","vulnerability":{"name":"CVE-2026-42499"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.497005Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.497005Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:14:55.497005Z","vulnerability":{"name":"CVE-2026-5435"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.497064Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.497064Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:14:55.497064Z","vulnerability":{"name":"CVE-2026-6238"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.497253Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.497253Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.497253Z","vulnerability":{"name":"CVE-2026-4438"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.497351Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.49735Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:14:55.49735Z","vulnerability":{"name":"CVE-2026-40225"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49757Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.49757Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.49757Z","vulnerability":{"name":"CVE-2026-24401"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.497672Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.497672Z","products":[{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"}],"status":"affected","timestamp":"2026-05-14T10:14:55.497671Z","vulnerability":{"name":"CVE-2025-6141"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.497894Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.497894Z","products":[{"@id":"pkg:generic/haproxy@2.4.28"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.497894Z","vulnerability":{"name":"CVE-2023-45539"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.497945Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.497944Z","products":[{"@id":"pkg:npm/minimatch@3.0.5"},{"@id":"pkg:npm/minimatch@5.1.6"},{"@id":"pkg:npm/minimatch@9.0.5"}],"status":"affected","timestamp":"2026-05-14T10:14:55.497944Z","vulnerability":{"name":"CVE-2026-26996"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498077Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.498077Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.4?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.498077Z","vulnerability":{"name":"CVE-2026-43916"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498221Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.498221Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.4?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"affected","timestamp":"2026-05-14T10:14:55.498221Z","vulnerability":{"name":"CVE-2024-10041"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498375Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.498375Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.498375Z","vulnerability":{"name":"CVE-2026-5545"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498441Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.498441Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.498441Z","vulnerability":{"name":"CVE-2025-11468"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498508Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.498507Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.498507Z","vulnerability":{"name":"CVE-2025-59466"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498552Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.498552Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.498552Z","vulnerability":{"name":"CVE-2024-52615"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498666Z","impact_statement":"Firefox implements HLS (HTTP Live Streaming) via its own native Gecko media pipeline and does not route HLS stream parsing through FFmpeg's HLS demuxer. The libavcodec-extra package is installed as a system codec library but Firefox does not invoke libavformat's HLS demuxer module. Application code has no direct FFmpeg API calls. The extension-bypass attack requires that FFmpeg's demuxer be invoked directly on attacker-controlled input, a condition that cannot be met in this deployment.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:14:55.498666Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:14:55.498666Z","vulnerability":{"name":"CVE-2023-6601"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498809Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.498808Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.498808Z","vulnerability":{"name":"CVE-2026-33036"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498848Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.498848Z","products":[{"@id":"pkg:npm/minimatch@3.0.5"},{"@id":"pkg:npm/minimatch@5.1.6"},{"@id":"pkg:npm/minimatch@9.0.5"}],"status":"affected","timestamp":"2026-05-14T10:14:55.498848Z","vulnerability":{"name":"CVE-2026-27904"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.498952Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.498952Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.498952Z","vulnerability":{"name":"CVE-2026-41650"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499013Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499013Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.499013Z","vulnerability":{"name":"CVE-2026-4224"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499075Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499074Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.499074Z","vulnerability":{"name":"CVE-2025-58186"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499128Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499128Z","products":[{"@id":"pkg:npm/glob@10.4.5"}],"status":"affected","timestamp":"2026-05-14T10:14:55.499128Z","vulnerability":{"name":"CVE-2025-64756"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.49917Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.49917Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.49917Z","vulnerability":{"name":"CVE-2026-33814"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499214Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499214Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.499214Z","vulnerability":{"name":"CVE-2024-36618"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499386Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499386Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.499386Z","vulnerability":{"name":"CVE-2026-25896"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499435Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499435Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.499435Z","vulnerability":{"name":"CVE-2025-14819"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499482Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499481Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.499481Z","vulnerability":{"name":"CVE-2024-36619"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499604Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499604Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:14:55.499604Z","vulnerability":{"name":"CVE-2026-3832"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499653Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499653Z","products":[{"@id":"pkg:deb/ubuntu/liblzma5@5.6.1%2Breally5.4.5-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=xz-utils"},{"@id":"pkg:deb/ubuntu/xz-utils@5.6.1%2Breally5.4.5-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.499653Z","vulnerability":{"name":"CVE-2026-34743"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499725Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499725Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.499725Z","vulnerability":{"name":"CVE-2026-21717"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499772Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499772Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.499772Z","vulnerability":{"name":"CVE-2026-27143"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499818Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499818Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.499818Z","vulnerability":{"name":"CVE-2023-4504"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499922Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499922Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.499921Z","vulnerability":{"name":"CVE-2026-24842"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.499962Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.499962Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.499962Z","vulnerability":{"name":"CVE-2026-39836"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500028Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500028Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.500028Z","vulnerability":{"name":"CVE-2025-47906"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500149Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500149Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500149Z","vulnerability":{"name":"CVE-2025-6170"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500233Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500232Z","products":[{"@id":"pkg:npm/lodash@4.17.21"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500232Z","vulnerability":{"name":"CVE-2025-13465"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50029Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50029Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.50029Z","vulnerability":{"name":"CVE-2025-68121"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500347Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500346Z","products":[{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500346Z","vulnerability":{"name":"CVE-2025-68973"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500401Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500401Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500401Z","vulnerability":{"name":"CVE-2026-7168"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500453Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500453Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.500453Z","vulnerability":{"name":"CVE-2023-49501"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500596Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500596Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500596Z","vulnerability":{"name":"CVE-2026-41080"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500645Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500645Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500645Z","vulnerability":{"name":"CVE-2025-8961"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500694Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500694Z","products":[{"@id":"pkg:deb/ubuntu/mtr-tiny@0.95-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mtr"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500694Z","vulnerability":{"name":"CVE-2025-49809"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.50075Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50075Z","products":[{"@id":"pkg:npm/underscore@1.13.2"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500749Z","vulnerability":{"name":"CVE-2026-27601"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500802Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500802Z","products":[{"@id":"pkg:deb/ubuntu/tar@1.35%2Bdfsg-3build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500802Z","vulnerability":{"name":"CVE-2026-5704"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500855Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500855Z","products":[{"@id":"pkg:golang/stdlib@1.23.7"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500855Z","vulnerability":{"name":"CVE-2025-58185"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500903Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500903Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"affected","timestamp":"2026-05-14T10:14:55.500902Z","vulnerability":{"name":"CVE-2026-27942"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.500968Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.500968Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.500968Z","vulnerability":{"name":"CVE-2026-3446"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501016Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501015Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501015Z","vulnerability":{"name":"CVE-2026-0966"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501091Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501091Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.501091Z","vulnerability":{"name":"CVE-2026-6019"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501144Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501143Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.501143Z","vulnerability":{"name":"CVE-2024-36613"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501273Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501273Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.501273Z","vulnerability":{"name":"CVE-2023-50008"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501413Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501413Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501413Z","vulnerability":{"name":"CVE-2016-20013"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501533Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501532Z","products":[{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=jpeg-xl"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501532Z","vulnerability":{"name":"CVE-2021-36691"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501578Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501578Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501578Z","vulnerability":{"name":"CVE-2026-22695"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501637Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501636Z","products":[{"@id":"pkg:deb/ubuntu/liblcms2-2@2.14-2build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=lcms2"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501636Z","vulnerability":{"name":"CVE-2026-41254"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501686Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501686Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501686Z","vulnerability":{"name":"CVE-2026-0967"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501738Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501738Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501737Z","vulnerability":{"name":"CVE-2025-8277"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501787Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501787Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501787Z","vulnerability":{"name":"CVE-2025-7039"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501851Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.50185Z","products":[{"@id":"pkg:generic/python@3.13.4"}],"status":"under_investigation","timestamp":"2026-05-14T10:14:55.50185Z","vulnerability":{"name":"CVE-2026-4786"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501898Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501898Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501898Z","vulnerability":{"name":"CVE-2025-8851"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.501946Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.501945Z","products":[{"@id":"pkg:deb/ubuntu/libcups2@2.4.1op1-1ubuntu4.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:14:55.501945Z","vulnerability":{"name":"CVE-2025-58436"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:14:55.502003Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:14:55.502003Z","products":[{"@id":"pkg:npm/lodash@4.17.21"}],"status":"affected","timestamp":"2026-05-14T10:14:55.502003Z","vulnerability":{"name":"CVE-2026-2950"}}],"timestamp":"2026-03-12T17:46:02.882729908Z","tooling":"","version":18}