{"id":"USN-7894-1","summary":"edk2 vulnerabilities","details":"It was discovered that EDK II was susceptible to a predictable TCP Initial\nSequence Number. An attacker could possibly use this issue to gain\nunauthorized access. This issue only affected Ubuntu 22.04 LTS, and Ubuntu\n24.04 LTS. (CVE-2023-45236, CVE-2023-45237)\n\nIt was discovered that EDK II incorrectly handled S3 sleep. An attacker\ncould possibly use this issue to cause a denial of service. This issue only\naffected Ubuntu 22.04 LTS, and Ubuntu 24.04 LTS. (CVE-2024-1298)\n\nIt was discovered that the EDK II PE/COFF loader incorrectly handled\ncertain memory operations. An attacker could possibly use this issue to\ncause a denial of service, obtain sensitive information, or execute\narbitrary code. This issue only affected Ubuntu 22.04 LTS, and Ubuntu\n24.04 LTS. (CVE-2024-38796)\n\nIt was discovered that the EDK II PE image hashing function incorrectly\nhandled certain memory operations. An attacker could possibly use this\nissue to cause a denial of service, or execute arbitrary code.\n(CVE-2024-38797)\n\nIt was discovered that the EDK II BIOS incorrectly handled certain memory\noperations. An attacker could possibly use this issue to cause a denial of\nservice. (CVE-2024-38805, CVE-2025-2295)\n\nIt was discovered that EDK II incorrectly handled the enabling of MCE. An\nattacker could possibly use this issue to cause a denial of service, or\nexecute arbitrary code. (CVE-2025-3770)\n\nIt was discovered that the OpenSSL library embedded in EDK II contained\nmultiple vulnerabilties. An attacker could possibly use these issues to\ncause a denial of service, obtain sensitive information, or execute\narbitrary code. (CVE-2021-3712, CVE-2022-0778, CVE-2022-4304,\nCVE-2022-4450, CVE-2023-0215, CVE-2023-0286, CVE-2023-0464, CVE-2023-0465,\nCVE-2023-0466, CVE-2023-2650, CVE-2023-3446, CVE-2023-3817, CVE-2023-5678,\nCVE-2023-6237, CVE-2024-0727, CVE-2024-13176, CVE-2024-2511,\nCVE-2024-41996, CVE-2024-4741, CVE-2024-5535, CVE-2024-6119, CVE-2024-9143,\nCVE-2025-9232)","modified":"2026-04-27T18:33:17.725974130Z","published":"2025-11-26T15:05:43Z","related":["UBUNTU-CVE-2021-3712","UBUNTU-CVE-2022-0778","UBUNTU-CVE-2022-4304","UBUNTU-CVE-2022-4450","UBUNTU-CVE-2023-0215","UBUNTU-CVE-2023-0286","UBUNTU-CVE-2023-0464","UBUNTU-CVE-2023-0465","UBUNTU-CVE-2023-0466","UBUNTU-CVE-2023-2650","UBUNTU-CVE-2023-3446","UBUNTU-CVE-2023-3817","UBUNTU-CVE-2023-45236","UBUNTU-CVE-2023-45237","UBUNTU-CVE-2023-5678","UBUNTU-CVE-2023-6237","UBUNTU-CVE-2024-0727","UBUNTU-CVE-2024-1298","UBUNTU-CVE-2024-13176","UBUNTU-CVE-2024-2511","UBUNTU-CVE-2024-38796","UBUNTU-CVE-2024-38797","UBUNTU-CVE-2024-38805","UBUNTU-CVE-2024-4741","UBUNTU-CVE-2024-5535","UBUNTU-CVE-2024-6119","UBUNTU-CVE-2024-9143","UBUNTU-CVE-2025-2295","UBUNTU-CVE-2025-3770","UBUNTU-CVE-2025-9232"],"upstream":["CVE-2021-3712","CVE-2022-0778","CVE-2022-4304","CVE-2022-4450","CVE-2023-0215","CVE-2023-0286","CVE-2023-0464","CVE-2023-0465","CVE-2023-0466","CVE-2023-2650","CVE-2023-3446","CVE-2023-3817","CVE-2023-45236","CVE-2023-45237","CVE-2023-5678","CVE-2023-6237","CVE-2024-0727","CVE-2024-1298","CVE-2024-13176","CVE-2024-2511","CVE-2024-38796","CVE-2024-38797","CVE-2024-38805","CVE-2024-4741","CVE-2024-5535","CVE-2024-6119","CVE-2024-9143","CVE-2025-2295","CVE-2025-3770","CVE-2025-9232","UBUNTU-CVE-2021-3712","UBUNTU-CVE-2022-0778","UBUNTU-CVE-2022-4304","UBUNTU-CVE-2022-4450","UBUNTU-CVE-2023-0215","UBUNTU-CVE-2023-0286","UBUNTU-CVE-2023-0464","UBUNTU-CVE-2023-0465","UBUNTU-CVE-2023-0466","UBUNTU-CVE-2023-2650","UBUNTU-CVE-2023-3446","UBUNTU-CVE-2023-3817","UBUNTU-CVE-2023-45236","UBUNTU-CVE-2023-45237","UBUNTU-CVE-2023-5678","UBUNTU-CVE-2023-6237","UBUNTU-CVE-2024-0727","UBUNTU-CVE-2024-1298","UBUNTU-CVE-2024-13176","UBUNTU-CVE-2024-2511","UBUNTU-CVE-2024-38796","UBUNTU-CVE-2024-38797","UBUNTU-CVE-2024-38805","UBUNTU-CVE-2024-4741","UBUNTU-CVE-2024-5535","UBUNTU-CVE-2024-6119","UBUNTU-CVE-2024-9143","UBUNTU-CVE-2025-2295","UBUNTU-CVE-2025-3770","UBUNTU-CVE-2025-9232"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7894-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-3712"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-0778"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-4304"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-4450"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-0215"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-0286"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-0464"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-0465"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-0466"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-2650"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-3446"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-3817"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-5678"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-6237"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-45236"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-45237"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-0727"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-1298"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-2511"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-4741"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-5535"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-6119"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-9143"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-13176"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-38796"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-38797"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-38805"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-2295"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-3770"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-9232"}],"affected":[{"package":{"name":"edk2","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/edk2@2022.02-3ubuntu0.22.04.4?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2022.02-3ubuntu0.22.04.4"}]}],"versions":["2021.08~rc0-2","2021.08-3","2021.11~rc1-1","2021.11-1","2021.11-2","2022.02~rc1-1","2022.02~rc1-1ubuntu1","2022.02-1","2022.02-2","2022.02-3","2022.02-3ubuntu0.22.04.1","2022.02-3ubuntu0.22.04.2","2022.02-3ubuntu0.22.04.3"],"ecosystem_specific":{"binaries":[{"binary_name":"ovmf","binary_version":"2022.02-3ubuntu0.22.04.4"},{"binary_name":"ovmf-ia32","binary_version":"2022.02-3ubuntu0.22.04.4"},{"binary_version":"2022.02-3ubuntu0.22.04.4","binary_name":"qemu-efi"},{"binary_version":"2022.02-3ubuntu0.22.04.4","binary_name":"qemu-efi-aarch64"},{"binary_version":"2022.02-3ubuntu0.22.04.4","binary_name":"qemu-efi-arm"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7894-1.json","cves_map":{"ecosystem":"Ubuntu:22.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2021-3712"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"high"}],"id":"CVE-2022-0778"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2022-4304"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2022-4450"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2023-0215"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"type":"Ubuntu","score":"high"}],"id":"CVE-2023-0286"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2023-0464"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2023-0465"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"type":"Ubuntu","score":"negligible"}],"id":"CVE-2023-0466"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2023-2650"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2023-3446"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2023-3817"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2023-5678"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-0727"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-1298"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-2511"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-4741"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-5535"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-9143"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-13176"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-38796"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-38797"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-38805"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2025-2295"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2025-3770"}]}}},{"package":{"name":"edk2","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/edk2@2024.02-2ubuntu0.6?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2024.02-2ubuntu0.6"}]}],"versions":["2023.05-2","2023.11-2","2023.11-3","2023.11-4","2023.11-5","2023.11-6","2023.11-8","2024.02-1","2024.02-2","2024.02-2ubuntu0.1","2024.02-2ubuntu0.3","2024.02-2ubuntu0.4","2024.02-2ubuntu0.5"],"ecosystem_specific":{"binaries":[{"binary_version":"2024.02-2ubuntu0.6","binary_name":"efi-shell-aa64"},{"binary_version":"2024.02-2ubuntu0.6","binary_name":"efi-shell-arm"},{"binary_version":"2024.02-2ubuntu0.6","binary_name":"efi-shell-ia32"},{"binary_name":"efi-shell-riscv64","binary_version":"2024.02-2ubuntu0.6"},{"binary_version":"2024.02-2ubuntu0.6","binary_name":"efi-shell-x64"},{"binary_version":"2024.02-2ubuntu0.6","binary_name":"ovmf"},{"binary_version":"2024.02-2ubuntu0.6","binary_name":"ovmf-ia32"},{"binary_version":"2024.02-2ubuntu0.6","binary_name":"qemu-efi-aarch64"},{"binary_name":"qemu-efi-arm","binary_version":"2024.02-2ubuntu0.6"},{"binary_version":"2024.02-2ubuntu0.6","binary_name":"qemu-efi-riscv64"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7894-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2023-3446"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2023-3817"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2023-5678"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2023-6237"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-0727"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-1298"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-2511"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-4741"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-5535"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-6119"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-9143"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2024-13176"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-38796"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-38797"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2024-38805"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2025-2295"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2025-3770"}]}}}],"schema_version":"1.7.5"}