[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-58143":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":28,"aliases":29,"duplicate_of":9,"upstream":30,"downstream":31,"duplicates":56,"related":57,"reserved_at":9,"published_at":66,"modified_at":67,"state":68,"summary":69,"references_raw":78,"kevs":93,"epss":94,"epss_history":97,"metrics":369,"affected":376},"CVE-2025-58143","[This CNA information record relates to multiple CVEs; the\ntext explains which aspects/vulnerabilities correspond to which CVE.]\n\nThere are multiple issues related to the handling and accessing of guest\nmemory pages in the viridian code:\n\n 1. A NULL pointer dereference in the updating of the reference TSC area.\n    This is CVE-2025-27466.\n\n 2. A NULL pointer dereference by assuming the SIM page is mapped when\n    a synthetic timer message has to be delivered.  This is\n    CVE-2025-58142.\n\n 3. A race in the mapping of the reference TSC page, where a guest can\n    get Xen to free a page while still present in the guest physical to\n    machine (p2m) page tables.  This is CVE-2025-58143.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-366","Race Condition within a Thread","If two threads of execution use a resource simultaneously, there exists the possibility that resources may be used while invalid, in turn making the state of execution undefined.","weakness","Draft","Base","Medium",[20,24],{"id":21,"name":22,"techniques":23},"CAPEC-26","Leveraging Race Conditions",[],{"id":25,"name":26,"techniques":27},"CAPEC-29","Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions",[],[],[],[],[32,34,36,38,40,42,44,46,48,50,52,54],{"_key":33},"ALPINE-CVE-2025-58143",{"_key":35},"DSA-6068-1",{"_key":37},"SUSE-SU-2025:3797-1",{"_key":39},"SUSE-SU-2025:3798-1",{"_key":41},"SUSE-SU-2025:03172-1",{"_key":43},"SUSE-SU-2025:3843-1",{"_key":45},"SUSE-SU-2026:0303-1",{"_key":47},"SUSE-SU-2026:0012-1",{"_key":49},"OPENSUSE-SU-2025:15547-1",{"_key":51},"MGASA-2025-0270",{"_key":53},"DEBIAN-CVE-2025-58143",{"_key":55},"UBUNTU-CVE-2025-58143",[],[58,59,60,61,62,63,64,65],{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},"2025-09-11T14:05:29.729Z","2025-11-04T21:13:24.914Z","Modified",{"cisa_kev":70,"cisa_ransomware":70,"cisa_vendor":9,"epss_severity":71,"epss_score":72,"severity":73,"severity_score":74,"severity_version":75,"severity_source":76,"severity_vector":77,"severity_status":68},false,"low",0.00075,"critical",9.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[79,85,89],{"url":80,"sources":81,"tags":83},"https://xenbits.xenproject.org/xsa/advisory-472.html",[76,82],"nvd",[84],"Vendor Advisory",{"url":86,"sources":87,"tags":88},"http://xenbits.xen.org/xsa/advisory-472.html",[76,82],[],{"url":90,"sources":91,"tags":92},"http://www.openwall.com/lists/oss-security/2025/09/09/1",[76,82],[],[],{"date":95,"score":72,"percentile":96},"2026-06-03",0.22746,[98,102,106,109,112,115,118,121,124,127,130,133,135,138,141,145,148,151,154,157,160,163,166,169,172,175,178,181,184,187,190,193,196,199,202,205,208,211,214,217,220,223,226,229,232,235,238,241,244,247,250,252,255,258,261,264,267,270,272,275,278,281,284,287,290,293,296,299,302,306,309,312,315,318,321,324,327,330,333,336,339,342,345,348,351,354,357,360,363,366],{"date":99,"score":100,"percentile":101},"2025-11-04",0.00058,0.18292,{"date":103,"score":104,"percentile":105},"2025-11-05",0.00055,0.17259,{"date":107,"score":104,"percentile":108},"2025-11-06",0.17231,{"date":110,"score":104,"percentile":111},"2025-11-07",0.17247,{"date":113,"score":104,"percentile":114},"2025-11-08",0.1725,{"date":116,"score":104,"percentile":117},"2025-11-09",0.17224,{"date":119,"score":104,"percentile":120},"2025-11-10",0.17189,{"date":122,"score":104,"percentile":123},"2025-11-11",0.17212,{"date":125,"score":104,"percentile":126},"2025-11-12",0.17246,{"date":128,"score":104,"percentile":129},"2025-11-13",0.17276,{"date":131,"score":104,"percentile":132},"2025-11-14",0.1728,{"date":134,"score":104,"percentile":126},"2025-11-15",{"date":136,"score":104,"percentile":137},"2025-11-16",0.1721,{"date":139,"score":104,"percentile":140},"2025-11-17",0.17172,{"date":142,"score":143,"percentile":144},"2025-11-18",0.00049,0.10747,{"date":146,"score":143,"percentile":147},"2025-11-19",0.10766,{"date":149,"score":143,"percentile":150},"2025-11-20",0.10793,{"date":152,"score":143,"percentile":153},"2025-11-21",0.15233,{"date":155,"score":143,"percentile":156},"2025-11-22",0.15237,{"date":158,"score":143,"percentile":159},"2025-11-23",0.15228,{"date":161,"score":143,"percentile":162},"2025-11-24",0.15192,{"date":164,"score":143,"percentile":165},"2025-11-25",0.15185,{"date":167,"score":143,"percentile":168},"2025-11-26",0.15174,{"date":170,"score":143,"percentile":171},"2025-11-27",0.15181,{"date":173,"score":143,"percentile":174},"2025-11-28",0.15161,{"date":176,"score":143,"percentile":177},"2025-11-29",0.15139,{"date":179,"score":143,"percentile":180},"2025-11-30",0.15145,{"date":182,"score":143,"percentile":183},"2025-12-01",0.15183,{"date":185,"score":143,"percentile":186},"2025-12-02",0.15195,{"date":188,"score":143,"percentile":189},"2025-12-03",0.15224,{"date":191,"score":143,"percentile":192},"2025-12-04",0.15182,{"date":194,"score":143,"percentile":195},"2025-12-05",0.15253,{"date":197,"score":143,"percentile":198},"2025-12-06",0.15269,{"date":200,"score":143,"percentile":201},"2025-12-07",0.15249,{"date":203,"score":143,"percentile":204},"2025-12-08",0.15263,{"date":206,"score":143,"percentile":207},"2025-12-09",0.1532,{"date":209,"score":143,"percentile":210},"2025-12-10",0.15383,{"date":212,"score":143,"percentile":213},"2025-12-11",0.15418,{"date":215,"score":143,"percentile":216},"2025-12-12",0.15471,{"date":218,"score":143,"percentile":219},"2025-12-13",0.15478,{"date":221,"score":143,"percentile":222},"2025-12-14",0.15434,{"date":224,"score":143,"percentile":225},"2025-12-15",0.15402,{"date":227,"score":143,"percentile":228},"2025-12-16",0.1542,{"date":230,"score":143,"percentile":231},"2025-12-17",0.15515,{"date":233,"score":143,"percentile":234},"2025-12-18",0.15574,{"date":236,"score":143,"percentile":237},"2025-12-19",0.15617,{"date":239,"score":143,"percentile":240},"2025-12-20",0.15596,{"date":242,"score":143,"percentile":243},"2025-12-21",0.15559,{"date":245,"score":143,"percentile":246},"2025-12-22",0.15508,{"date":248,"score":143,"percentile":249},"2025-12-23",0.15497,{"date":251,"score":143,"percentile":246},"2025-12-24",{"date":253,"score":143,"percentile":254},"2025-12-25",0.15583,{"date":256,"score":143,"percentile":257},"2025-12-26",0.15575,{"date":259,"score":143,"percentile":260},"2025-12-27",0.15588,{"date":262,"score":143,"percentile":263},"2025-12-28",0.15542,{"date":265,"score":143,"percentile":266},"2025-12-29",0.15511,{"date":268,"score":143,"percentile":269},"2025-12-30",0.15522,{"date":271,"score":143,"percentile":260},"2025-12-31",{"date":273,"score":143,"percentile":274},"2026-01-01",0.15685,{"date":276,"score":143,"percentile":277},"2026-01-02",0.15673,{"date":279,"score":143,"percentile":280},"2026-01-03",0.15652,{"date":282,"score":143,"percentile":283},"2026-01-04",0.15558,{"date":285,"score":143,"percentile":286},"2026-01-05",0.15518,{"date":288,"score":143,"percentile":289},"2026-01-06",0.15529,{"date":291,"score":143,"percentile":292},"2026-01-07",0.15568,{"date":294,"score":143,"percentile":295},"2026-01-08",0.15623,{"date":297,"score":143,"percentile":298},"2026-01-09",0.15635,{"date":300,"score":143,"percentile":301},"2026-01-10",0.15651,{"date":303,"score":304,"percentile":305},"2026-01-11",0.00064,0.20172,{"date":307,"score":304,"percentile":308},"2026-01-12",0.20133,{"date":310,"score":304,"percentile":311},"2026-01-13",0.2011,{"date":313,"score":304,"percentile":314},"2026-01-14",0.20169,{"date":316,"score":304,"percentile":317},"2026-01-15",0.20175,{"date":319,"score":304,"percentile":320},"2026-01-16",0.20207,{"date":322,"score":304,"percentile":323},"2026-01-17",0.20219,{"date":325,"score":304,"percentile":326},"2026-01-18",0.2017,{"date":328,"score":304,"percentile":329},"2026-01-19",0.20129,{"date":331,"score":304,"percentile":332},"2026-01-20",0.20111,{"date":334,"score":304,"percentile":335},"2026-01-21",0.20075,{"date":337,"score":304,"percentile":338},"2026-01-22",0.2002,{"date":340,"score":304,"percentile":341},"2026-01-23",0.20117,{"date":343,"score":304,"percentile":344},"2026-01-24",0.20144,{"date":346,"score":304,"percentile":347},"2026-01-25",0.20069,{"date":349,"score":304,"percentile":350},"2026-01-26",0.19963,{"date":352,"score":304,"percentile":353},"2026-01-27",0.19955,{"date":355,"score":304,"percentile":356},"2026-01-28",0.19956,{"date":358,"score":304,"percentile":359},"2026-01-29",0.19917,{"date":361,"score":304,"percentile":362},"2026-01-30",0.19927,{"date":364,"score":304,"percentile":365},"2026-01-31",0.19934,{"date":367,"score":304,"percentile":368},"2026-02-01",0.19962,[370,374],{"source":76,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":371,"cvss_v4_0":9},{"baseScore":74,"baseSeverity":372,"vectorString":77,"impactScore":74,"exploitabilityScore":373},"CRITICAL",10,{"source":82,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":375,"cvss_v4_0":9},{"baseScore":74,"baseSeverity":372,"vectorString":77,"impactScore":74,"exploitabilityScore":373},[377],{"ecosystem":9,"name":378,"vendor":378,"product":378,"cpe_part":379,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":380},"xen","o",[381],{"version":382,"is_range":383,"range_type":384,"version_start":385,"version_start_type":386,"version_end":387,"version_end_type":388,"fixed_in":9},"gte4.13.0_lt4.17.0",true,"cpe","4.13.0","including","4.17.0","excluding"]