{"@context":"https://openvex.dev/ns/v0.2.0","@id":"pkg:docker/synthetics-private-location-worker-fips@1.60.0","author":"security@datadoghq.com","author_role":"Vulnerability Management","last_updated":"2026-05-14T11:43:54.541935023Z","statements":[{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.013997Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.013997Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.013997Z","vulnerability":{"name":"CVE-2019-6988"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.950775Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.014026Z","vulnerability":{"name":"CVE-2025-7425"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.034736Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.034736Z","products":[{"@id":"pkg:deb/ubuntu/libpixman-1-0@0.42.2-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pixman"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.034736Z","vulnerability":{"name":"CVE-2023-37769"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.034769Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.034769Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034768Z","vulnerability":{"name":"CVE-2026-34979"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.034832Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.034832Z","products":[{"@id":"pkg:npm/ip-address@5.9.4"},{"@id":"pkg:npm/ip-address@9.0.5"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.034832Z","vulnerability":{"name":"CVE-2026-42338"}},{"action_statement":"This vulnerability was fixed in: 1.61.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:54:52.064544Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034875Z","vulnerability":{"name":"CVE-2025-9230"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.011135Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.011135Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.011135Z","vulnerability":{"name":"CVE-2024-35368"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.08368Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.08368Z","products":[{"@id":"pkg:npm/%40tootallnate/once@2.0.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.08368Z","vulnerability":{"name":"CVE-2026-3449"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.013438Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.013438Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.013437Z","vulnerability":{"name":"CVE-2024-35365"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.013815Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.013815Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.013814Z","vulnerability":{"name":"CVE-2024-35366"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.006615Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.006615Z","products":[{"@id":"pkg:deb/ubuntu/login@1%3A4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=shadow"},{"@id":"pkg:deb/ubuntu/passwd@1%3A4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=shadow"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.006614Z","vulnerability":{"name":"CVE-2024-56433"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.006898Z","impact_statement":"Firefox does not support JPEG 2000 and does not invoke FFmpeg's jpeg2000dec decoder. The channel definition cdef atom is a JPEG 2000 container construct that would only be processed by explicitly running FFmpeg against a crafted JPEG 2000 file. No such execution path exists in the Synthetics Worker.","justification":"vulnerable_code_not_present","last_updated":"2026-05-14T10:44:05.006898Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.006898Z","vulnerability":{"name":"CVE-2025-9951"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.008073Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.008073Z","products":[{"@id":"pkg:deb/ubuntu/libgcrypt20@1.10.3-2build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.008072Z","vulnerability":{"name":"CVE-2024-2236"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.00868Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.00868Z","products":[{"@id":"pkg:deb/ubuntu/libjpeg-turbo8@2.1.5-2ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libjpeg-turbo"}],"status":"affected","timestamp":"2026-05-14T10:44:05.008679Z","vulnerability":{"name":"CVE-2018-10126"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.009104Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.009103Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.009103Z","vulnerability":{"name":"CVE-2024-41996"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.009216Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.009216Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:44:05.009214Z","vulnerability":{"name":"CVE-2024-32228"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.009301Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.009301Z","products":[{"@id":"pkg:deb/ubuntu/wget@1.21.4-1ubuntu4.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.0093Z","vulnerability":{"name":"CVE-2024-10524"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.009333Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.009333Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.009333Z","vulnerability":{"name":"CVE-2024-31578"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.009461Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.009461Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.009461Z","vulnerability":{"name":"CVE-2018-18064"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.010796Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.010795Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.010794Z","vulnerability":{"name":"CVE-2025-2173"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.010992Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.010992Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.010992Z","vulnerability":{"name":"CVE-2023-49502"}},{"action_statement":"This vulnerability was fixed in: 1.64.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:25:35.222875Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.0111Z","vulnerability":{"name":"CVE-2025-3360"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.89581Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.009433Z","vulnerability":{"name":"CVE-2025-13836"}},{"action_statement":"This vulnerability was fixed in: 1.61.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:54:52.064408Z","products":[{"@id":"pkg:generic/haproxy@2.4.28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.006505Z","vulnerability":{"name":"CVE-2025-32464"}},{"action_statement":"This vulnerability was fixed in: 1.61.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:54:52.064451Z","products":[{"@id":"pkg:generic/haproxy@2.4.28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.00686Z","vulnerability":{"name":"CVE-2025-11230"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.01405Z","impact_statement":"libx264 is an H.264 video encoder library. The attack vector described (RCE via a crafted AAC audio file) represents an unusual cross-format exploitation path that would require libx264 to process an AAC audio stream directly — a scenario that does not occur during normal H.264 encoding operations. In the Synthetics Worker, libx264 is a transitive dependency of libavcodec-extra; Firefox may use it for H.264 video encoding in limited contexts (e.g., getUserMedia/WebRTC), but the Synthetics Worker does not execute WebRTC sessions nor does it process untrusted AAC files through any pipeline that routes to libx264. The exploitation path (attacker-supplied AAC → libx264 memory corruption) cannot be triggered by the Synthetics Worker's operational model.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.01405Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libx264-164@2%3A0.164.3108%2Bgit31e19f9-1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=x264"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.01405Z","vulnerability":{"name":"CVE-2025-25467"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.014993Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.014993Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.014992Z","vulnerability":{"name":"CVE-2025-2174"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.015975Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.015975Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.015975Z","vulnerability":{"name":"CVE-2024-35367"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.057797Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.057797Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.057796Z","vulnerability":{"name":"CVE-2026-34980"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.057999Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.057999Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:44:05.057998Z","vulnerability":{"name":"CVE-2026-40227"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.059004Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.059004Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.059003Z","vulnerability":{"name":"CVE-2025-59733"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.059572Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.059572Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.059571Z","vulnerability":{"name":"CVE-2026-34933"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.060032Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.060032Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.060032Z","vulnerability":{"name":"CVE-2023-48727"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.06232Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.062319Z","products":[{"@id":"pkg:deb/ubuntu/dpkg@1.22.6ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.062319Z","vulnerability":{"name":"CVE-2026-2219"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.062802Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.062802Z","products":[{"@id":"pkg:deb/ubuntu/libicu74@74.2-1ubuntu3.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=icu"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.062802Z","vulnerability":{"name":"CVE-2025-5222"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.062847Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.062847Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.062846Z","vulnerability":{"name":"CVE-2025-59732"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.062907Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.062907Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:44:05.062907Z","vulnerability":{"name":"CVE-2025-59734"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.063095Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.063095Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.063095Z","vulnerability":{"name":"CVE-2025-59728"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.063126Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.063126Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.063126Z","vulnerability":{"name":"CVE-2025-59731"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.06441Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.06441Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.06441Z","vulnerability":{"name":"CVE-2023-50007"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.065608Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.065608Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.065608Z","vulnerability":{"name":"CVE-2023-22656"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.065943Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.065943Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"affected","timestamp":"2026-05-14T10:44:05.065943Z","vulnerability":{"name":"CVE-2025-50422"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.066034Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.066034Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.066034Z","vulnerability":{"name":"CVE-2026-39826"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.066068Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.066068Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.066067Z","vulnerability":{"name":"CVE-2026-39817"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.067245Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.067245Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.067244Z","vulnerability":{"name":"CVE-2026-39314"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.067979Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.067979Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.067979Z","vulnerability":{"name":"CVE-2026-34757"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.068185Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.068184Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.3"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.3?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.068184Z","vulnerability":{"name":"CVE-2026-27456"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.070194Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.070193Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.070193Z","vulnerability":{"name":"CVE-2024-36617"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.89613Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.060269Z","vulnerability":{"name":"CVE-2025-64506"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951177Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.059995Z","vulnerability":{"name":"CVE-2025-61724"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951226Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:44:05.066744Z","vulnerability":{"name":"CVE-2025-8114"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.070899Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.070899Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:44:05.070899Z","vulnerability":{"name":"CVE-2026-40223"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.071069Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.071068Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.071068Z","vulnerability":{"name":"CVE-2026-42501"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.071104Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.071104Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.071104Z","vulnerability":{"name":"CVE-2026-39825"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.071985Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.071985Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.071984Z","vulnerability":{"name":"CVE-2026-39316"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.07246Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.07246Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:44:05.07246Z","vulnerability":{"name":"CVE-2026-40228"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.075267Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.075267Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.075267Z","vulnerability":{"name":"CVE-2026-39823"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.075439Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.075439Z","products":[{"@id":"pkg:deb/ubuntu/libgcrypt20@1.10.3-2build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.075439Z","vulnerability":{"name":"CVE-2026-41989"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.07551Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.07551Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.07551Z","vulnerability":{"name":"CVE-2026-41079"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.07612Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.076119Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"affected","timestamp":"2026-05-14T10:44:05.076119Z","vulnerability":{"name":"CVE-2026-6192"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.076635Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.076635Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:44:05.076635Z","vulnerability":{"name":"CVE-2026-40224"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.078001Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.078001Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.078001Z","vulnerability":{"name":"CVE-2026-27447"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.078983Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.078982Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.078982Z","vulnerability":{"name":"CVE-2026-34990"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.080849Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.080849Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.080848Z","vulnerability":{"name":"CVE-2023-39328"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.081212Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.081212Z","products":[{"@id":"pkg:deb/ubuntu/libvo-amrwbenc0@0.1.3-2build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=vo-amrwbenc"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.081212Z","vulnerability":{"name":"CVE-2019-2128"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.081387Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.081387Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.081387Z","vulnerability":{"name":"CVE-2023-47282"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.896217Z","products":[{"@id":"pkg:npm/jws@3.2.2"},{"@id":"pkg:npm/jws@4.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.07538Z","vulnerability":{"name":"CVE-2025-65945"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.896244Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.079024Z","vulnerability":{"name":"CVE-2025-64505"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951261Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.071136Z","vulnerability":{"name":"CVE-2025-58189"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951273Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.074591Z","vulnerability":{"name":"CVE-2025-58183"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951307Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.079091Z","vulnerability":{"name":"CVE-2025-58188"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.08524Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.085239Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:44:05.085239Z","vulnerability":{"name":"CVE-2026-40962"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.085678Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.085678Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:44:05.085678Z","vulnerability":{"name":"CVE-2026-40226"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.087773Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.087772Z","products":[{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"}],"status":"affected","timestamp":"2026-05-14T10:44:05.087771Z","vulnerability":{"name":"CVE-2022-3219"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.087875Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.087875Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.087875Z","vulnerability":{"name":"CVE-2025-66382"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.088124Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.088123Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.088123Z","vulnerability":{"name":"CVE-2026-39819"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.089457Z","impact_statement":"The Firequalizer is an advanced IIR-based audio equalization filter residing in FFmpeg's libavfilter module. Firefox does not use FFmpeg's filter graph (libavfilter) at any point during media playback or audio processing. The libavfilter library is separate from the codec libraries used by the OS and is not invoked by the browser runtime. This filter can only be triggered by explicitly constructing an FFmpeg filter chain, an operation absent from this deployment's execution paths.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.089457Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.089457Z","vulnerability":{"name":"CVE-2025-10256"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.090662Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.090662Z","products":[{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"}],"status":"affected","timestamp":"2026-05-14T10:44:05.090661Z","vulnerability":{"name":"CVE-2025-69720"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.091023Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.091023Z","products":[{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=elfutils"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.091023Z","vulnerability":{"name":"CVE-2025-1376"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.092521Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.09252Z","products":[{"@id":"pkg:deb/ubuntu/zlib1g@1%3A1.3.dfsg-3.1ubuntu2.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zlib"}],"status":"affected","timestamp":"2026-05-14T10:44:05.09252Z","vulnerability":{"name":"CVE-2026-27171"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.093069Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.093069Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:44:05.093069Z","vulnerability":{"name":"CVE-2026-32776"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.093473Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.093473Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:44:05.093472Z","vulnerability":{"name":"CVE-2026-32778"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.093832Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.093832Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:44:05.093832Z","vulnerability":{"name":"CVE-2026-32777"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.0941Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.0941Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.0941Z","vulnerability":{"name":"CVE-2026-45186"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.8963Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.0876Z","vulnerability":{"name":"CVE-2025-61727"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.094902Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.094902Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:44:05.094901Z","vulnerability":{"name":"CVE-2025-12343"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.096747Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.096746Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.096746Z","vulnerability":{"name":"CVE-2026-44289"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.097264Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.097263Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.097263Z","vulnerability":{"name":"CVE-2026-44290"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.097815Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.097815Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.097814Z","vulnerability":{"name":"CVE-2026-44291"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.098329Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.098329Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.098328Z","vulnerability":{"name":"CVE-2026-44293"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.098812Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.098812Z","products":[{"@id":"pkg:npm/%40protobufjs/utf8@1.1.0"},{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.098812Z","vulnerability":{"name":"CVE-2026-44288"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.099217Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.099217Z","products":[{"@id":"pkg:npm/follow-redirects@1.15.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.099217Z","vulnerability":{"name":"GHSA-r4q5-vmmm-2653"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.099528Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.099527Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.099527Z","vulnerability":{"name":"CVE-2026-42009"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.09996Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.099958Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.099958Z","vulnerability":{"name":"CVE-2026-42012"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.100291Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.100291Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.10029Z","vulnerability":{"name":"CVE-2026-42013"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.10065Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.100649Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.100649Z","vulnerability":{"name":"CVE-2026-42014"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.100991Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.100991Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.10099Z","vulnerability":{"name":"CVE-2026-42015"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.101308Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.101308Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.101308Z","vulnerability":{"name":"CVE-2026-5260"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.101443Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.101443Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.101443Z","vulnerability":{"name":"CVE-2026-5419"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.101516Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.101516Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.101516Z","vulnerability":{"name":"CVE-2026-44292"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.101551Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.101551Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.101551Z","vulnerability":{"name":"CVE-2026-44294"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.10158Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.10158Z","products":[{"@id":"pkg:npm/%40smithy/config-resolver@1.0.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.10158Z","vulnerability":{"name":"GHSA-6475-r3vj-m8vf"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.316227Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.4?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.316226Z","vulnerability":{"name":"CVE-2024-10963"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.31638Z","products":[{"@id":"pkg:deb/ubuntu/dpkg@1.22.6ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.31638Z","vulnerability":{"name":"CVE-2025-6297"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.316593Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.316593Z","vulnerability":{"name":"CVE-2025-50952"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.31682Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.31682Z","vulnerability":{"name":"CVE-2025-9900"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.316844Z","products":[{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=sqlite3"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.316844Z","vulnerability":{"name":"CVE-2025-7709"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.318039Z","products":[{"@id":"pkg:npm/tar-fs@3.0.9"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.318038Z","vulnerability":{"name":"CVE-2025-59343"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.318289Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.318289Z","vulnerability":{"name":"CVE-2025-8961"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.318535Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.318534Z","vulnerability":{"name":"CVE-2025-9165"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.318873Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.318872Z","vulnerability":{"name":"CVE-2025-8058"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.319045Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"fixed","timestamp":"2026-05-14T10:44:05.319044Z","vulnerability":{"name":"CVE-2025-61145"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.016876Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.016876Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.016875Z","vulnerability":{"name":"CVE-2017-7475"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.017262Z","impact_statement":"The TTY (TeleTYpe/terminal output capture) demuxer in FFmpeg processes a niche format entirely unrelated to web content or browser media. Firefox's media pipeline does not call FFmpeg's TTY demuxer. This code path requires that FFmpeg's demuxer subsystem be invoked on TTY-format input, which cannot occur during the Synthetics Worker's browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.017261Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.017261Z","vulnerability":{"name":"CVE-2023-6602"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.017386Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.017386Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.017386Z","vulnerability":{"name":"CVE-2024-32230"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.017467Z","impact_statement":"Firefox has never supported JPEG 2000 image/video decoding (the format was only supported in Safari/WebKit). No web content served during Synthetics Worker test execution would cause Firefox to invoke FFmpeg's jpeg2000dec decoder.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.017467Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.017467Z","vulnerability":{"name":"CVE-2025-22921"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.017555Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.017555Z","products":[{"@id":"pkg:deb/ubuntu/wget@1.21.4-1ubuntu4.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.017555Z","vulnerability":{"name":"CVE-2021-31879"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.017649Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.017649Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.017649Z","vulnerability":{"name":"CVE-2026-42010"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.018867Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.018866Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.018866Z","vulnerability":{"name":"CVE-2025-27587"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.019774Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.019774Z","products":[{"@id":"pkg:deb/ubuntu/tar@1.35%2Bdfsg-3build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.019774Z","vulnerability":{"name":"CVE-2025-45582"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.019872Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.019872Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.019871Z","vulnerability":{"name":"CVE-2024-7055"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.01998Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.01998Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.01998Z","vulnerability":{"name":"CVE-2025-0518"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.020121Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.020121Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.020121Z","vulnerability":{"name":"CVE-2025-1594"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.020332Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.020332Z","products":[{"@id":"pkg:npm/basic-ftp@5.0.3"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.020332Z","vulnerability":{"name":"CVE-2026-44240"}},{"action_statement":"This vulnerability was fixed in: 1.64.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:25:35.222957Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.016558Z","vulnerability":{"name":"CVE-2025-6052"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.895857Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.017614Z","vulnerability":{"name":"CVE-2025-12084"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.895869Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.019668Z","vulnerability":{"name":"CVE-2025-12816"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.895879Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.020253Z","vulnerability":{"name":"CVE-2025-8291"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.950958Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034609Z","vulnerability":{"name":"CVE-2025-61723"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.02045Z","impact_statement":"XBIN (eXtended BINary) is a text-art/ANSI art container format with no presence in web content. No web browser invokes FFmpeg's XBIN demuxer during normal browsing. The Synthetics Worker processes HTML pages and web assets through the browser runtime; it does not call FFmpeg's format detection or demuxing stack on any content. This attack vector (feeding arbitrary data to FFmpeg's demuxer) cannot be exercised in this deployment.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.02045Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.02045Z","vulnerability":{"name":"CVE-2023-6604"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.020955Z","impact_statement":"avformat_free_context() is an FFmpeg-specific API call used to release AVFormatContext objects in applications that directly use libavformat. Firefox does not call FFmpeg's avformat_free_context(), it manages its own media context lifecycle via its native Gecko media framework.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.020955Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.020955Z","vulnerability":{"name":"CVE-2025-25473"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.021813Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.021813Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-05-14T10:44:05.021812Z","vulnerability":{"name":"CVE-2026-40355"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.022518Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.022518Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-05-14T10:44:05.022518Z","vulnerability":{"name":"CVE-2026-40356"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.0229Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.0229Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.0229Z","vulnerability":{"name":"CVE-2025-7700"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.023277Z","impact_statement":"Firefox implements MPEG-DASH adaptive streaming natively through its Gecko media engine and does not delegate DASH playlist fetching or parsing to FFmpeg's libavformat DASH demuxer. The SSRF in this CVE requires that FFmpeg actively fetch URLs specified in a DASH manifest this requires FFmpeg to be directly invoked with network I/O enabled on untrusted input, which never occurs in this deployment","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.023276Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.023276Z","vulnerability":{"name":"CVE-2023-6605"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.023439Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.023439Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.023439Z","vulnerability":{"name":"CVE-2025-2175"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.024094Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.024093Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.024093Z","vulnerability":{"name":"CVE-2026-3833"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.024297Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.024297Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.024296Z","vulnerability":{"name":"CVE-2025-63757"}},{"action_statement":"This vulnerability was fixed in: 1.64.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:25:35.222997Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.023141Z","vulnerability":{"name":"CVE-2025-14512"}},{"action_statement":"This vulnerability was fixed in: 1.64.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:25:35.223004Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.023223Z","vulnerability":{"name":"CVE-2025-14087"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.895894Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.023393Z","vulnerability":{"name":"CVE-2025-66031"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.895908Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.025254Z","vulnerability":{"name":"CVE-2025-66030"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.950891Z","products":[{"@id":"pkg:generic/haproxy@2.4.28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.020623Z","vulnerability":{"name":"CVE-2024-49214"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.950915Z","products":[{"@id":"pkg:npm/tmp@0.2.1"},{"@id":"pkg:npm/tmp@0.2.3"}],"status":"affected","timestamp":"2026-05-14T10:44:05.024895Z","vulnerability":{"name":"CVE-2025-54798"}},{"action_statement":"This vulnerability was fixed in: 1.61.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:54:52.064525Z","products":[{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034641Z","vulnerability":{"name":"CVE-2025-9232"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.025451Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.025451Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.02545Z","vulnerability":{"name":"CVE-2026-34978"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.025894Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.025893Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.025893Z","vulnerability":{"name":"CVE-2026-39820"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.027664Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.027663Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:44:05.027663Z","vulnerability":{"name":"CVE-2025-59375"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.027997Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.027997Z","products":[{"@id":"pkg:deb/ubuntu/coreutils@9.4-3ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.027996Z","vulnerability":{"name":"CVE-2025-5278"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.028132Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.028132Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.028132Z","vulnerability":{"name":"CVE-2025-22919"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.02889Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.02889Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.028889Z","vulnerability":{"name":"CVE-2026-33846"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.02914Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.02914Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.029139Z","vulnerability":{"name":"CVE-2025-2177"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.029525Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.029525Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.029525Z","vulnerability":{"name":"CVE-2025-2176"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.029939Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.029939Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.029938Z","vulnerability":{"name":"CVE-2024-36616"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.031204Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.031204Z","products":[{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=elfutils"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.031204Z","vulnerability":{"name":"CVE-2025-1352"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.03124Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.03124Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:44:05.03124Z","vulnerability":{"name":"CVE-2026-6385"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.031405Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.031404Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.031404Z","vulnerability":{"name":"CVE-2026-4437"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.032308Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.032307Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.032307Z","vulnerability":{"name":"CVE-2026-4046"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.03368Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.03368Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.03368Z","vulnerability":{"name":"CVE-2023-39329"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.034326Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.034325Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034325Z","vulnerability":{"name":"CVE-2026-4739"}},{"action_statement":"This vulnerability was fixed in: 1.64.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:25:35.22303Z","products":[{"@id":"pkg:deb/ubuntu/libtasn1-6@4.19.0-3ubuntu0.24.04.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.026864Z","vulnerability":{"name":"CVE-2025-13151"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.895919Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.027428Z","vulnerability":{"name":"CVE-2025-64720"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.895934Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.032086Z","vulnerability":{"name":"CVE-2025-65018"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.950949Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034114Z","vulnerability":{"name":"CVE-2025-61725"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.034912Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.034911Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034911Z","vulnerability":{"name":"CVE-2026-33416"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.035601Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.0356Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.0356Z","vulnerability":{"name":"CVE-2026-33636"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.035827Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.035825Z","products":[{"@id":"pkg:deb/ubuntu/libharfbuzz0b@8.3.0-2build2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=harfbuzz"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.035825Z","vulnerability":{"name":"CVE-2026-22693"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.036376Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.036375Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:44:05.036375Z","vulnerability":{"name":"CVE-2026-30999"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.036993Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.036993Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:44:05.036992Z","vulnerability":{"name":"CVE-2026-4775"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.037067Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.037067Z","products":[{"@id":"pkg:deb/ubuntu/libgbm1@25.0.7-0ubuntu0.24.04.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mesa"},{"@id":"pkg:deb/ubuntu/mesa-libgallium@25.0.7-0ubuntu0.24.04.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mesa"}],"status":"affected","timestamp":"2026-05-14T10:44:05.037067Z","vulnerability":{"name":"CVE-2026-40393"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.037117Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.037117Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:44:05.037117Z","vulnerability":{"name":"CVE-2026-30997"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.037225Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.037225Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.037224Z","vulnerability":{"name":"CVE-2026-6732"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.037317Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.037316Z","products":[{"@id":"pkg:deb/ubuntu/xdg-utils@1.1.3-4.1ubuntu3?arch=all\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.037316Z","vulnerability":{"name":"CVE-2025-52968"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.03793Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.03793Z","products":[{"@id":"pkg:deb/ubuntu/coreutils@9.4-3ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.03793Z","vulnerability":{"name":"CVE-2016-2781"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.038185Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.038185Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.038185Z","vulnerability":{"name":"CVE-2026-33349"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.038409Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.038409Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.038409Z","vulnerability":{"name":"CVE-2025-59529"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.038924Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.038924Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.038923Z","vulnerability":{"name":"CVE-2024-52616"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.039559Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.039559Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:44:05.039559Z","vulnerability":{"name":"CVE-2026-5450"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.040472Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.040472Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-05-14T10:44:05.040471Z","vulnerability":{"name":"CVE-2026-30998"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.0422Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.042199Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.042199Z","vulnerability":{"name":"CVE-2026-33845"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.042287Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.042286Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:44:05.042285Z","vulnerability":{"name":"CVE-2026-5928"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.042379Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.042379Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.042378Z","vulnerability":{"name":"CVE-2026-42499"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.042412Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.042412Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:44:05.042412Z","vulnerability":{"name":"CVE-2026-5435"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.04244Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.04244Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:44:05.042439Z","vulnerability":{"name":"CVE-2026-6238"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.042545Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.042545Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.042544Z","vulnerability":{"name":"CVE-2026-4438"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.895977Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.041132Z","vulnerability":{"name":"CVE-2025-61915"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.950997Z","products":[{"@id":"pkg:npm/brace-expansion@1.1.11"},{"@id":"pkg:npm/brace-expansion@2.0.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.041422Z","vulnerability":{"name":"CVE-2025-5889"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.042633Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.042633Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:44:05.042633Z","vulnerability":{"name":"CVE-2026-40225"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.043208Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.043207Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.043205Z","vulnerability":{"name":"CVE-2026-24401"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.044309Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.044309Z","products":[{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"}],"status":"affected","timestamp":"2026-05-14T10:44:05.044308Z","vulnerability":{"name":"CVE-2025-6141"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.04606Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.04606Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.04606Z","vulnerability":{"name":"CVE-2026-43916"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.046162Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.046162Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"affected","timestamp":"2026-05-14T10:44:05.046161Z","vulnerability":{"name":"CVE-2024-10041"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.046832Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.046832Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.046831Z","vulnerability":{"name":"CVE-2024-52615"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.047345Z","impact_statement":"Firefox implements HLS (HTTP Live Streaming) via its own native Gecko media pipeline and does not route HLS stream parsing through FFmpeg's HLS demuxer. The libavcodec-extra package is installed as a system codec library but Firefox does not invoke libavformat's HLS demuxer module. Application code has no direct FFmpeg API calls. The extension-bypass attack requires that FFmpeg's demuxer be invoked directly on attacker-controlled input, a condition that cannot be met in this deployment.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.047345Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.047345Z","vulnerability":{"name":"CVE-2023-6601"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.04766Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.04766Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.047659Z","vulnerability":{"name":"CVE-2026-33036"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.048088Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.048088Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.048088Z","vulnerability":{"name":"CVE-2026-41650"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.048991Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.048991Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.04899Z","vulnerability":{"name":"CVE-2026-33814"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.04916Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.04916Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.04916Z","vulnerability":{"name":"CVE-2024-36618"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.049882Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.049882Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.049882Z","vulnerability":{"name":"CVE-2024-36619"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.049973Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.049973Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.049973Z","vulnerability":{"name":"CVE-2026-3832"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.050007Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.050007Z","products":[{"@id":"pkg:deb/ubuntu/liblzma5@5.6.1%2Breally5.4.5-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=xz-utils"},{"@id":"pkg:deb/ubuntu/xz-utils@5.6.1%2Breally5.4.5-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.050007Z","vulnerability":{"name":"CVE-2026-34743"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.050216Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.050216Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.050216Z","vulnerability":{"name":"CVE-2026-39836"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.051501Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.051501Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.0515Z","vulnerability":{"name":"CVE-2023-49501"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.052161Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.05216Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:44:05.05216Z","vulnerability":{"name":"CVE-2026-41080"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.052405Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.052404Z","products":[{"@id":"pkg:deb/ubuntu/mtr-tiny@0.95-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mtr"}],"status":"affected","timestamp":"2026-05-14T10:44:05.052404Z","vulnerability":{"name":"CVE-2025-49809"}},{"action_statement":"This vulnerability was fixed in: 1.64.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:25:35.223167Z","products":[{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"}],"status":"affected","timestamp":"2026-05-14T10:44:05.05111Z","vulnerability":{"name":"CVE-2025-68973"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951017Z","products":[{"@id":"pkg:generic/haproxy@2.4.28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.045904Z","vulnerability":{"name":"CVE-2023-45539"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951039Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.048581Z","vulnerability":{"name":"CVE-2025-58186"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951045Z","products":[{"@id":"pkg:npm/glob@10.4.5"}],"status":"affected","timestamp":"2026-05-14T10:44:05.048766Z","vulnerability":{"name":"CVE-2025-64756"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.052839Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.052839Z","products":[{"@id":"pkg:deb/ubuntu/tar@1.35%2Bdfsg-3build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.052839Z","vulnerability":{"name":"CVE-2026-5704"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.053123Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.053123Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.053122Z","vulnerability":{"name":"CVE-2024-36613"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.053205Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.053205Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.053205Z","vulnerability":{"name":"CVE-2023-50008"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.053418Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.053418Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:44:05.053418Z","vulnerability":{"name":"CVE-2016-20013"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.054198Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.054198Z","products":[{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=jpeg-xl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.054197Z","vulnerability":{"name":"CVE-2021-36691"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.05583Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.05583Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.055829Z","vulnerability":{"name":"CVE-2026-42011"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.055894Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.055894Z","products":[{"@id":"pkg:npm/brace-expansion@1.1.11"},{"@id":"pkg:npm/brace-expansion@2.0.1"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.055894Z","vulnerability":{"name":"CVE-2026-33750"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.056286Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-05-14T10:44:05.056286Z","products":[{"@id":"pkg:deb/ubuntu/xdg-utils@1.1.3-4.1ubuntu3?arch=all\u0026distro=ubuntu-24.04"}],"status":"not_affected","timestamp":"2026-05-14T10:44:05.056286Z","vulnerability":{"name":"CVE-2022-4055"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.056492Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.056492Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.056492Z","vulnerability":{"name":"CVE-2026-33811"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.056568Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.056568Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.056568Z","vulnerability":{"name":"CVE-2023-49528"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:44:05.056848Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:44:05.056848Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"under_investigation","timestamp":"2026-05-14T10:44:05.056847Z","vulnerability":{"name":"CVE-2024-31582"}},{"action_statement":"This vulnerability was fixed in: 1.64.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:25:35.223202Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.054753Z","vulnerability":{"name":"CVE-2025-7039"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.896053Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"affected","timestamp":"2026-05-14T10:44:05.055091Z","vulnerability":{"name":"CVE-2025-58436"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.896074Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.056056Z","vulnerability":{"name":"CVE-2025-13837"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.896086Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.056531Z","vulnerability":{"name":"CVE-2025-61729"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.896097Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.05675Z","vulnerability":{"name":"CVE-2025-6075"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951097Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.052879Z","vulnerability":{"name":"CVE-2025-58185"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.951136Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.056162Z","vulnerability":{"name":"CVE-2025-58187"}},{"action_statement":"This vulnerability was fixed in: 1.62.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:03:42.95116Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.057319Z","vulnerability":{"name":"CVE-2025-47912"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172329Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.091941Z","vulnerability":{"name":"CVE-2025-9820"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480453Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.019806Z","vulnerability":{"name":"CVE-2026-28389"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480458Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.019842Z","vulnerability":{"name":"CVE-2026-28390"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480481Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.046253Z","vulnerability":{"name":"CVE-2026-5545"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480491Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.050054Z","vulnerability":{"name":"CVE-2026-21717"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480495Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.050126Z","vulnerability":{"name":"CVE-2026-27143"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480501Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.037036Z","vulnerability":{"name":"CVE-2026-31790"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480235Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.006715Z","vulnerability":{"name":"CVE-2026-27190"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480246Z","products":[{"@id":"pkg:deb/ubuntu/libgdk-pixbuf-2.0-0@2.42.10%2Bdfsg-3ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gdk-pixbuf"},{"@id":"pkg:deb/ubuntu/libgdk-pixbuf2.0-common@2.42.10%2Bdfsg-3ubuntu3.2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=gdk-pixbuf"}],"status":"affected","timestamp":"2026-05-14T10:44:05.006797Z","vulnerability":{"name":"CVE-2026-5201"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480255Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.009169Z","vulnerability":{"name":"CVE-2025-48934"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480261Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.010728Z","vulnerability":{"name":"CVE-2025-21620"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480266Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.010957Z","vulnerability":{"name":"CVE-2025-48888"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480313Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.013932Z","vulnerability":{"name":"CVE-2025-24015"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480351Z","products":[{"@id":"pkg:npm/jsonpath@1.1.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.015857Z","vulnerability":{"name":"CVE-2026-1615"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480366Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:44:05.01625Z","vulnerability":{"name":"CVE-2026-41673"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480376Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:44:05.020088Z","vulnerability":{"name":"CVE-2026-41672"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.48038Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.020293Z","vulnerability":{"name":"CVE-2026-33891"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"This is a Remote Command Execution made available by the \"type\" fields of protobuf definitions, which will then execute during object decoding using that definition. An attacker that is authorized to run Synthetics tests that execute on that private location will be able to run JavaScript commands that inherit the execution context and permissions of the hosting Node.js process. PR #9754 fixes the issue and the release 1.67.7 will be avaiable shortly.","justification":"","last_updated":"2026-05-14T11:37:19.480388Z","products":[{"@id":"pkg:npm/protobufjs@7.4.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.020423Z","vulnerability":{"name":"CVE-2026-41242"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480393Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:44:05.021354Z","vulnerability":{"name":"CVE-2026-41674"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.4804Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:44:05.021438Z","vulnerability":{"name":"CVE-2026-41675"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480408Z","products":[{"@id":"pkg:npm/%40xmldom/xmldom@0.8.10"}],"status":"affected","timestamp":"2026-05-14T10:44:05.023534Z","vulnerability":{"name":"CVE-2026-34601"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480415Z","products":[{"@id":"pkg:npm/basic-ftp@5.0.3"}],"status":"affected","timestamp":"2026-05-14T10:44:05.025643Z","vulnerability":{"name":"CVE-2026-41324"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480419Z","products":[{"@id":"pkg:npm/path-to-regexp@0.1.12"}],"status":"affected","timestamp":"2026-05-14T10:44:05.026129Z","vulnerability":{"name":"CVE-2026-4867"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480427Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.031477Z","vulnerability":{"name":"CVE-2026-33894"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480432Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.033931Z","vulnerability":{"name":"CVE-2026-33895"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480437Z","products":[{"@id":"pkg:npm/lodash@4.17.21"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034493Z","vulnerability":{"name":"CVE-2026-4800"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480444Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034797Z","vulnerability":{"name":"CVE-2026-22864"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480465Z","products":[{"@id":"pkg:npm/node-forge@1.3.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.039507Z","vulnerability":{"name":"CVE-2026-33896"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.48047Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.041739Z","vulnerability":{"name":"CVE-2026-21710"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172346Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:44:05.09404Z","vulnerability":{"name":"CVE-2026-0965"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172353Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.094133Z","vulnerability":{"name":"CVE-2026-27139"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923773Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.006571Z","vulnerability":{"name":"CVE-2025-15467"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923849Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.006756Z","vulnerability":{"name":"CVE-2025-69420"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923862Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.01092Z","vulnerability":{"name":"CVE-2026-6100"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923874Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.016155Z","vulnerability":{"name":"CVE-2026-0672"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923884Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.0178Z","vulnerability":{"name":"CVE-2026-0865"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923896Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.011068Z","vulnerability":{"name":"CVE-2026-22796"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923903Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.018539Z","vulnerability":{"name":"CVE-2025-66293"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923912Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.020392Z","vulnerability":{"name":"CVE-2025-59465"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923921Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.020853Z","vulnerability":{"name":"CVE-2026-3298"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923933Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.023653Z","vulnerability":{"name":"CVE-2025-15366"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923943Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.023887Z","vulnerability":{"name":"CVE-2025-15367"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923952Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.027201Z","vulnerability":{"name":"CVE-2026-1502"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923961Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.031116Z","vulnerability":{"name":"CVE-2026-0988"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.92397Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:44:05.031334Z","vulnerability":{"name":"CVE-2025-15281"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923983Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.033009Z","vulnerability":{"name":"CVE-2026-21637"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.923996Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.033461Z","vulnerability":{"name":"CVE-2026-0990"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924013Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.019733Z","vulnerability":{"name":"CVE-2025-69419"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924022Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.037255Z","vulnerability":{"name":"CVE-2025-61726"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924029Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.03768Z","vulnerability":{"name":"CVE-2026-7210"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924037Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.03944Z","vulnerability":{"name":"CVE-2025-55131"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924045Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.039675Z","vulnerability":{"name":"CVE-2025-15282"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924049Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.039976Z","vulnerability":{"name":"CVE-2026-1299"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924055Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.020053Z","vulnerability":{"name":"CVE-2025-69421"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924067Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.042071Z","vulnerability":{"name":"CVE-2025-12781"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924084Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.046297Z","vulnerability":{"name":"CVE-2025-11468"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.92409Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.046339Z","vulnerability":{"name":"CVE-2025-59466"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.9241Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.048387Z","vulnerability":{"name":"CVE-2026-4224"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924117Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.050188Z","vulnerability":{"name":"CVE-2026-24842"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924138Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.053008Z","vulnerability":{"name":"CVE-2026-3446"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924143Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.053084Z","vulnerability":{"name":"CVE-2026-6019"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924161Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.054947Z","vulnerability":{"name":"CVE-2026-4786"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924175Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.056388Z","vulnerability":{"name":"CVE-2025-55130"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924196Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.057575Z","vulnerability":{"name":"CVE-2026-2297"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924209Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.059919Z","vulnerability":{"name":"CVE-2026-0992"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924321Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.075339Z","vulnerability":{"name":"CVE-2025-61731"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924331Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.056685Z","vulnerability":{"name":"CVE-2025-68160"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.92423Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.060139Z","vulnerability":{"name":"CVE-2026-0989"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924251Z","products":[{"@id":"pkg:pypi/wheel@0.45.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.065548Z","vulnerability":{"name":"CVE-2026-24049"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924263Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.065756Z","vulnerability":{"name":"CVE-2026-22801"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924268Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.065793Z","vulnerability":{"name":"CVE-2025-28162"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924274Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.065835Z","vulnerability":{"name":"CVE-2025-28164"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924285Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.065907Z","vulnerability":{"name":"CVE-2025-8732"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924302Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-05-14T10:44:05.070734Z","vulnerability":{"name":"CVE-2025-68471"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924343Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-05-14T10:44:05.078453Z","vulnerability":{"name":"CVE-2025-68468"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924357Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.0803Z","vulnerability":{"name":"CVE-2026-23950"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924376Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.062732Z","vulnerability":{"name":"CVE-2026-22795"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924383Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.081622Z","vulnerability":{"name":"CVE-2026-23745"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924393Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:44:05.084234Z","vulnerability":{"name":"CVE-2026-0861"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924404Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.087563Z","vulnerability":{"name":"CVE-2025-61730"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.92441Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.087655Z","vulnerability":{"name":"CVE-2025-55132"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924445Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.087921Z","vulnerability":{"name":"CVE-2026-4519"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924462Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-05-14T10:44:05.09088Z","vulnerability":{"name":"CVE-2025-68276"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924468Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.090981Z","vulnerability":{"name":"CVE-2025-13462"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924484Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.088449Z","vulnerability":{"name":"CVE-2025-69418"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924538Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.094304Z","vulnerability":{"name":"CVE-2026-3479"}},{"action_statement":"This vulnerability was fixed in: 1.64.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:25:35.223358Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.081589Z","vulnerability":{"name":"CVE-2025-13601"}},{"action_statement":"This vulnerability was fixed in: 1.63.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:19:48.89641Z","products":[{"@id":"pkg:npm/aws-sdk@2.1370.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.101624Z","vulnerability":{"name":"GHSA-j965-2qgj-vjmq"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480505Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.051283Z","vulnerability":{"name":"CVE-2026-7168"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480516Z","products":[{"@id":"pkg:deb/ubuntu/liblcms2-2@2.14-2build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=lcms2"}],"status":"affected","timestamp":"2026-05-14T10:44:05.054452Z","vulnerability":{"name":"CVE-2026-41254"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480521Z","products":[{"@id":"pkg:npm/lodash@4.17.21"}],"status":"affected","timestamp":"2026-05-14T10:44:05.055278Z","vulnerability":{"name":"CVE-2026-2950"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480534Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.055642Z","vulnerability":{"name":"CVE-2026-32283"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480525Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.055446Z","vulnerability":{"name":"CVE-2026-32281"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.48053Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.05549Z","vulnerability":{"name":"CVE-2026-32280"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480539Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.031536Z","vulnerability":{"name":"CVE-2026-28387"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480545Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.056654Z","vulnerability":{"name":"CVE-2026-27140"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480549Z","products":[{"@id":"pkg:deb/ubuntu/libnghttp2-14@1.59.0-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nghttp2"}],"status":"affected","timestamp":"2026-05-14T10:44:05.056783Z","vulnerability":{"name":"CVE-2026-27135"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480558Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:44:05.060172Z","vulnerability":{"name":"CVE-2025-61144"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480563Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.037286Z","vulnerability":{"name":"CVE-2026-28388"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480566Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.10?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.10?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-05-14T10:44:05.060308Z","vulnerability":{"name":"CVE-2026-29111"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480579Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.065653Z","vulnerability":{"name":"CVE-2026-21714"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480588Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.070862Z","vulnerability":{"name":"CVE-2026-6429"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480595Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.07117Z","vulnerability":{"name":"CVE-2026-6253"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480603Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.07561Z","vulnerability":{"name":"CVE-2026-22863"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480611Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.079059Z","vulnerability":{"name":"CVE-2025-61786"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480621Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.081349Z","vulnerability":{"name":"CVE-2026-32289"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480626Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.081658Z","vulnerability":{"name":"CVE-2026-5773"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480615Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.079887Z","vulnerability":{"name":"CVE-2026-21713"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.48063Z","products":[{"@id":"pkg:generic/deno@2.0.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.081689Z","vulnerability":{"name":"CVE-2025-61785"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480635Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.082634Z","vulnerability":{"name":"CVE-2026-32282"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480641Z","products":[{"@id":"pkg:deb/ubuntu/libcap2@1%3A2.66-5ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcap2-bin@1%3A2.66-5ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libcap2"}],"status":"affected","timestamp":"2026-05-14T10:44:05.087446Z","vulnerability":{"name":"CVE-2026-4878"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480647Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-05-14T10:44:05.087809Z","vulnerability":{"name":"CVE-2025-61143"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480668Z","products":[{"@id":"pkg:deb/ubuntu/sed@4.9-2build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.093773Z","vulnerability":{"name":"CVE-2026-5958"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480673Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.09397Z","vulnerability":{"name":"CVE-2026-6276"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480679Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.094004Z","vulnerability":{"name":"CVE-2026-32288"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480652Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.087844Z","vulnerability":{"name":"CVE-2026-27144"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480658Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.088994Z","vulnerability":{"name":"CVE-2026-4873"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480685Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:generic/openssl@3.0.16"}],"status":"affected","timestamp":"2026-05-14T10:44:05.083182Z","vulnerability":{"name":"CVE-2026-31789"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480689Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.094224Z","vulnerability":{"name":"CVE-2026-21715"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480693Z","products":[{"@id":"pkg:generic/node@22.17.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.094263Z","vulnerability":{"name":"CVE-2026-21716"}},{"action_statement":"This vulnerability was fixed in: 1.67.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:37:19.480709Z","products":[{"@id":"pkg:npm/basic-ftp@5.0.3"}],"status":"affected","timestamp":"2026-05-14T10:44:05.096224Z","vulnerability":{"name":"GHSA-6v7q-wjvx-w8wg"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171749Z","products":[{"@id":"pkg:npm/basic-ftp@5.0.3"}],"status":"affected","timestamp":"2026-05-14T10:44:05.010866Z","vulnerability":{"name":"CVE-2026-27699"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171861Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.013965Z","vulnerability":{"name":"CVE-2025-0167"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171912Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:44:05.020667Z","vulnerability":{"name":"CVE-2026-3731"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171938Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.026365Z","vulnerability":{"name":"CVE-2026-25646"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171945Z","products":[{"@id":"pkg:npm/jsonpath@1.1.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.026617Z","vulnerability":{"name":"CVE-2025-61140"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171962Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.031507Z","vulnerability":{"name":"CVE-2025-10148"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171974Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.031865Z","vulnerability":{"name":"CVE-2026-25679"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171987Z","products":[{"@id":"pkg:deb/ubuntu/libgnutls30t64@3.8.3-1.1ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnutls28"}],"status":"affected","timestamp":"2026-05-14T10:44:05.03454Z","vulnerability":{"name":"CVE-2025-14831"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171992Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.034577Z","vulnerability":{"name":"CVE-2025-15224"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.171998Z","products":[{"@id":"pkg:deb/ubuntu/libnss3@2%3A3.98-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nss"},{"@id":"pkg:deb/ubuntu/libnss3-tools@2%3A3.98-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nss"}],"status":"affected","timestamp":"2026-05-14T10:44:05.03467Z","vulnerability":{"name":"CVE-2026-2781"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.17198Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.033246Z","vulnerability":{"name":"CVE-2026-1965"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172007Z","products":[{"@id":"pkg:npm/minimatch@3.0.5"},{"@id":"pkg:npm/minimatch@5.1.6"},{"@id":"pkg:npm/minimatch@9.0.5"}],"status":"affected","timestamp":"2026-05-14T10:44:05.035118Z","vulnerability":{"name":"CVE-2026-27903"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172026Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.040192Z","vulnerability":{"name":"CVE-2026-26278"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172039Z","products":[{"@id":"pkg:npm/minimatch@3.0.5"},{"@id":"pkg:npm/minimatch@5.1.6"},{"@id":"pkg:npm/minimatch@9.0.5"}],"status":"affected","timestamp":"2026-05-14T10:44:05.045968Z","vulnerability":{"name":"CVE-2026-26996"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.17206Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.049797Z","vulnerability":{"name":"CVE-2026-25896"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.17205Z","products":[{"@id":"pkg:npm/minimatch@3.0.5"},{"@id":"pkg:npm/minimatch@5.1.6"},{"@id":"pkg:npm/minimatch@9.0.5"}],"status":"affected","timestamp":"2026-05-14T10:44:05.047833Z","vulnerability":{"name":"CVE-2026-27904"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172095Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.050936Z","vulnerability":{"name":"CVE-2025-68121"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172065Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.049846Z","vulnerability":{"name":"CVE-2025-14819"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172081Z","products":[{"@id":"pkg:npm/lodash@4.17.21"}],"status":"affected","timestamp":"2026-05-14T10:44:05.050693Z","vulnerability":{"name":"CVE-2025-13465"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172103Z","products":[{"@id":"pkg:npm/underscore@1.13.2"}],"status":"affected","timestamp":"2026-05-14T10:44:05.052657Z","vulnerability":{"name":"CVE-2026-27601"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172107Z","products":[{"@id":"pkg:npm/fast-xml-parser@4.4.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.052914Z","vulnerability":{"name":"CVE-2026-27942"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172112Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:44:05.053044Z","vulnerability":{"name":"CVE-2026-0966"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172122Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:44:05.054524Z","vulnerability":{"name":"CVE-2026-0967"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172128Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:44:05.054668Z","vulnerability":{"name":"CVE-2025-8277"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172136Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.055749Z","vulnerability":{"name":"CVE-2025-15079"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172148Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.056813Z","vulnerability":{"name":"CVE-2026-3783"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172153Z","products":[{"@id":"pkg:npm/bn.js@4.11.8"}],"status":"affected","timestamp":"2026-05-14T10:44:05.057046Z","vulnerability":{"name":"CVE-2026-2739"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172164Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.060202Z","vulnerability":{"name":"CVE-2025-14524"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172178Z","products":[{"@id":"pkg:deb/ubuntu/libvpx9@1.14.0-1ubuntu2.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libvpx"}],"status":"affected","timestamp":"2026-05-14T10:44:05.063781Z","vulnerability":{"name":"CVE-2026-2447"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172187Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.065693Z","vulnerability":{"name":"CVE-2026-1489"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172191Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.065873Z","vulnerability":{"name":"CVE-2026-1484"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172201Z","products":[{"@id":"pkg:deb/ubuntu/libfreetype6@2.13.2%2Bdfsg-1build3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=freetype"}],"status":"affected","timestamp":"2026-05-14T10:44:05.06767Z","vulnerability":{"name":"CVE-2026-23865"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172218Z","products":[{"@id":"pkg:npm/ajv@8.5.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.074952Z","vulnerability":{"name":"CVE-2025-69873"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172227Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:44:05.075475Z","vulnerability":{"name":"CVE-2026-0964"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172232Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.075579Z","vulnerability":{"name":"CVE-2026-27142"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172243Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.079136Z","vulnerability":{"name":"CVE-2026-3784"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172251Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.081267Z","vulnerability":{"name":"CVE-2026-31802"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172257Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.081307Z","vulnerability":{"name":"CVE-2026-29786"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172271Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.081515Z","vulnerability":{"name":"CVE-2025-61732"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172274Z","products":[{"@id":"pkg:deb/ubuntu/libssh-4@0.10.6-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libssh"}],"status":"affected","timestamp":"2026-05-14T10:44:05.081555Z","vulnerability":{"name":"CVE-2026-0968"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172292Z","products":[{"@id":"pkg:deb/ubuntu/sudo@1.9.15p5-3ubuntu5.24.04.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-05-14T10:44:05.087723Z","vulnerability":{"name":"CVE-2026-35535"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172266Z","products":[{"@id":"pkg:npm/tar@6.2.1"}],"status":"affected","timestamp":"2026-05-14T10:44:05.08142Z","vulnerability":{"name":"CVE-2026-26960"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172287Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-05-14T10:44:05.087522Z","vulnerability":{"name":"CVE-2025-14017"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172307Z","products":[{"@id":"pkg:deb/ubuntu/libasound2-data@1.2.11-1ubuntu0.1?arch=all\u0026distro=ubuntu-24.04\u0026upstream=alsa-lib"},{"@id":"pkg:deb/ubuntu/libasound2t64@1.2.11-1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=alsa-lib"}],"status":"affected","timestamp":"2026-05-14T10:44:05.090556Z","vulnerability":{"name":"CVE-2026-25068"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172312Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:44:05.090621Z","vulnerability":{"name":"CVE-2026-25210"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172318Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-05-14T10:44:05.090808Z","vulnerability":{"name":"CVE-2026-24515"}},{"action_statement":"This vulnerability was fixed in: 1.66.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:34:32.172322Z","products":[{"@id":"pkg:deb/ubuntu/libglib2.0-0t64@2.80.0-6ubuntu3.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glib2.0"}],"status":"affected","timestamp":"2026-05-14T10:44:05.090846Z","vulnerability":{"name":"CVE-2026-1485"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924062Z","products":[{"@id":"pkg:generic/python@3.13.7"}],"status":"affected","timestamp":"2026-05-14T10:44:05.041577Z","vulnerability":{"name":"CVE-2026-3644"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924154Z","products":[{"@id":"pkg:deb/ubuntu/libpng16-16t64@1.6.43-5build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libpng1.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.05435Z","vulnerability":{"name":"CVE-2026-22695"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924218Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:44:05.059964Z","vulnerability":{"name":"CVE-2025-61728"}},{"action_statement":"This vulnerability was fixed in: 1.65.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:10.924224Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.6?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-05-14T10:44:05.060065Z","vulnerability":{"name":"CVE-2026-0915"}}],"timestamp":"2026-03-23T11:42:40.737530289Z","tooling":"","version":14}