File 1115-add-openvex-files.patch of Package erlang
From 7698069944d28eab4e0c7b399025156eb58d2bf1 Mon Sep 17 00:00:00 2001
From: Kiko Fernandez-Reyes <kiko@erlang.org>
Date: Mon, 22 Sep 2025 10:24:39 +0200
Subject: [PATCH 5/5] add openvex files
---
make/openvex.table | 562 +++++
make/openvex.table.license | 7 +
vex/otp-26.openvex.json | 3616 +++++++++++++++++++++++++++++++
vex/otp-26.openvex.json.license | 7 +
vex/otp-27.openvex.json | 2612 ++++++++++++++++++++++
vex/otp-27.openvex.json.license | 7 +
vex/otp-28.openvex.json | 478 ++++
vex/otp-28.openvex.json.license | 7 +
8 files changed, 7296 insertions(+)
create mode 100644 make/openvex.table
create mode 100644 make/openvex.table.license
create mode 100644 vex/otp-26.openvex.json
create mode 100644 vex/otp-26.openvex.json.license
create mode 100644 vex/otp-27.openvex.json
create mode 100644 vex/otp-27.openvex.json.license
create mode 100644 vex/otp-28.openvex.json
create mode 100644 vex/otp-28.openvex.json.license
diff --git a/make/openvex.table b/make/openvex.table
new file mode 100644
index 0000000000..1bf97a4603
--- /dev/null
+++ b/make/openvex.table
@@ -0,0 +1,562 @@
+{
+ "otp-26": [
+ {
+ "pkg:otp/ssh@5.0": "CVE-2025-48041",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.1.4.12",
+ "fixed": [
+ "pkg:otp/ssh@5.1.4.12"
+ ]
+ }
+ },
+ {
+ "pkg:otp/inets@9.0": "CVE-2016-1000107",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/inets@9.1.0.3",
+ "fixed": [
+ "pkg:otp/inets@9.1.0.3"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.0": "CVE-2025-48040",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.1.4.12",
+ "fixed": [
+ "pkg:otp/ssh@5.1.4.12"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.0": "CVE-2025-48039",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.1.4.12",
+ "fixed": [
+ "pkg:otp/ssh@5.1.4.12"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.0": "CVE-2025-48038",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.1.4.12",
+ "fixed": [
+ "pkg:otp/ssh@5.1.4.12"
+ ]
+ }
+ },
+ {
+ "pkg:github/madler/zlib@04f42ceca40f73e2978b50e93806c2a18c1281fc": "CVE-2023-45853",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2023-6129",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2023-6237",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-0727",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-13176",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-2511",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-4603",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-4741",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-5535",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-6119",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-9143",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2025-4575",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@14.0",
+ "pkg:otp/erl_interface@5.4"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:otp/ssh@5.1": "CVE-2023-48795",
+ "status": {
+ "affected": "Mitigation: If strict KEX availability cannot be ensured on both connection sides, affected encryption modes(CHACHA and CBC) can be disabled with standard ssh configuration. This will provide protection against vulnerability, but at a cost of affecting interoperability",
+ "fixed": [
+ "pkg:otp/ssh@5.1.1"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.0": "CVE-2025-26618",
+ "status": {
+ "affected": "Update to the next version",
+ "fixed": [
+ "pkg:otp/ssh@5.1.4.6"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.0": "CVE-2025-32433",
+ "status": {
+ "affected": "A temporary workaround involves disabling the SSH server or to prevent access via firewall rules.",
+ "fixed": [
+ "pkg:otp/ssh@5.1.4.8"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.1.1": "CVE-2025-46712",
+ "status": {
+ "affected": "Update to the next version",
+ "fixed": [
+ "pkg:otp/ssh@5.1.4.9"
+ ]
+ }
+ },
+ {
+ "pkg:otp/stdlib@5.0": "CVE-2025-4748",
+ "status": {
+ "affected": "Mitigation: Update to pkg:otp/stdlib@5.2.3.4",
+ "fixed": [
+ "pkg:otp/stdlib@5.2.3.4"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.0": "CVE-2025-30211",
+ "status": {
+ "affected": "Workaround: set option `parallel_login` to false. Reduce `max_sessions` option.",
+ "fixed": [
+ "pkg:otp/ssh@5.1.4.7"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssl@11.1": "CVE-2024-53846",
+ "status": {
+ "affected": "Update to ssl@11.1.4.6",
+ "fixed": [
+ "pkg:otp/ssl@11.1.4.6"
+ ]
+ }
+ }
+ ],
+ "otp-27": [
+ {
+ "pkg:otp/ssh@5.2": "CVE-2025-32433",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.2.10",
+ "fixed": [
+ "pkg:otp/ssh@5.2.10"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.2": "CVE-2025-48041",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.2.11.3",
+ "fixed": [
+ "pkg:otp/ssh@5.2.11.3"
+ ]
+ }
+ },
+ {
+ "pkg:otp/inets@9.2": "CVE-2016-1000107",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/inets@9.3.2.1",
+ "fixed": [
+ "pkg:otp/inets@9.3.2.1"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.2": "CVE-2025-48040",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.2.11.3",
+ "fixed": [
+ "pkg:otp/ssh@5.2.11.3"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.2": "CVE-2025-48039",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.2.11.3",
+ "fixed": [
+ "pkg:otp/ssh@5.2.11.3"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.2": "CVE-2025-48038",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.2.11.3",
+ "fixed": [
+ "pkg:otp/ssh@5.2.11.3"
+ ]
+ }
+ },
+ {
+ "pkg:github/madler/zlib@04f42ceca40f73e2978b50e93806c2a18c1281fc": "CVE-2023-45853",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2023-6129",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2023-6237",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-0727",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-13176",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-2511",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-4603",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-4741",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-5535",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-6119",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2024-9143",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2025-4575",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@15.0",
+ "pkg:otp/erl_interface@5.5.2"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:otp/ssh@5.2": "CVE-2025-26618",
+ "status": {
+ "affected": "Update to the next version",
+ "fixed": [
+ "pkg:otp/ssh@5.2.7"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.2": "CVE-2025-46712",
+ "status": {
+ "affected": "Update to ssh@5.2.11",
+ "fixed": [
+ "pkg:otp/ssh@5.2.11"
+ ]
+ }
+ },
+ {
+ "pkg:otp/stdlib@6.0": "CVE-2025-4748",
+ "status": {
+ "affected": "Mitigation: Update to pkg:otp/stdlib@6.2.2.1",
+ "fixed": [
+ "pkg:otp/stdlib@6.2.2.1"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.2": "CVE-2025-30211",
+ "status": {
+ "affected": "Workaround: set option `parallel_login` to false. Reduce `max_sessions` option.",
+ "fixed": [
+ "pkg:otp/ssh@5.2.9"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssl@11.2": "CVE-2024-53846",
+ "status": {
+ "affected": "Update to ssl@11.2.5",
+ "fixed": [
+ "pkg:otp/ssl@11.2.5"
+ ]
+ }
+ }
+ ],
+ "otp-28": [
+ {
+ "pkg:otp/erts@16.0": "CVE-2025-58050",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/erts@16.0.3",
+ "fixed": [
+ "pkg:otp/erts@16.0.3"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.3": "CVE-2025-48041",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.3.3",
+ "fixed": [
+ "pkg:otp/ssh@5.3.3"
+ ]
+ }
+ },
+ {
+ "pkg:otp/inets@9.4": "CVE-2016-1000107",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/inets@9.4.1",
+ "fixed": [
+ "pkg:otp/inets@9.4.1"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.3": "CVE-2025-48040",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.3.3",
+ "fixed": [
+ "pkg:otp/ssh@5.3.3"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.3": "CVE-2025-48039",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.3.3",
+ "fixed": [
+ "pkg:otp/ssh@5.3.3"
+ ]
+ }
+ },
+ {
+ "pkg:otp/ssh@5.3": "CVE-2025-48038",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/ssh@5.3.3",
+ "fixed": [
+ "pkg:otp/ssh@5.3.3"
+ ]
+ }
+ },
+ {
+ "pkg:otp/stdlib@7.0": "CVE-2025-4748",
+ "status": {
+ "affected": "Update to any of the following versions: pkg:otp/stdlib@7.0.1",
+ "fixed": [
+ "pkg:otp/stdlib@7.0.1"
+ ]
+ }
+ },
+ {
+ "pkg:github/PCRE2Project/pcre2@2dce7761b1831fd3f82a9c2bd5476259d945da4d": "OSV-2025-300",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@16.0"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/madler/zlib@1a8db63788c34a50e39e273d39b7e1033208aea2": "CVE-2023-45853",
+ "status": { "not_affected": "vulnerable_code_not_present" }
+ },
+ {
+ "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053": "CVE-2025-4575",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@16.0",
+ "pkg:otp/erl_interface@5.6"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/PCRE2Project/pcre2@2dce7761b1831fd3f82a9c2bd5476259d945da4d": "CVE-2025-58050",
+ "status": "under_investigation"
+ },
+ {
+ "pkg:github/wxWidgets/wxWidgets@dc585039bbd426829e3433002023a93f9bedd0c2": "CVE-2024-58249",
+ "status": {
+ "apps": [
+ "pkg:otp/wx@2.5"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ },
+ {
+ "pkg:github/openssl/openssl@636dfadc70ce26f2473870570bfd9ec352806b1d": "CVE-2016-2183",
+ "status": {
+ "apps": [
+ "pkg:otp/erts@16.0",
+ "pkg:otp/erl_interface@5.6"
+ ],
+ "not_affected": "vulnerable_code_not_present"
+ }
+ }
+ ]
+}
diff --git a/make/openvex.table.license b/make/openvex.table.license
new file mode 100644
index 0000000000..1ea854fee3
--- /dev/null
+++ b/make/openvex.table.license
@@ -0,0 +1,7 @@
+%CopyrightBegin%
+
+SPDX-License-Identifier: Apache-2.0
+
+Copyright Ericsson AB 2025. All Rights Reserved.
+
+%CopyrightEnd%
diff --git a/vex/otp-26.openvex.json b/vex/otp-26.openvex.json
new file mode 100644
index 0000000000..fcd62affa1
--- /dev/null
+++ b/vex/otp-26.openvex.json
@@ -0,0 +1,3616 @@
+{
+ "@context": "https://openvex.dev/ns/v0.2.0",
+ "@id": "https://openvex.dev/docs/public/otp/vex-otp-26",
+ "author": "vexctl",
+ "timestamp": "2025-08-28T16:31:28.818462+02:00",
+ "last_updated": "2025-09-16T08:22:17.722696009Z",
+ "version": 49,
+ "statements": [
+ {
+ "vulnerability": {
+ "name": "CVE-2023-45853"
+ },
+ "timestamp": "2025-08-28T16:31:55.029114897+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-45853"
+ },
+ "timestamp": "2025-08-28T16:31:55.045486705+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/madler/zlib@04f42ceca40f73e2978b50e93806c2a18c1281fc"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-6129"
+ },
+ "timestamp": "2025-08-28T16:31:55.063693842+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-6129"
+ },
+ "timestamp": "2025-08-28T16:31:55.079739995+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-6237"
+ },
+ "timestamp": "2025-08-28T16:31:55.096285731+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-6237"
+ },
+ "timestamp": "2025-08-28T16:31:55.111514072+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-0727"
+ },
+ "timestamp": "2025-08-28T16:31:55.128132987+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-0727"
+ },
+ "timestamp": "2025-08-28T16:31:55.143175048+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-13176"
+ },
+ "timestamp": "2025-08-28T16:31:55.159744964+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-13176"
+ },
+ "timestamp": "2025-08-28T16:31:55.175145774+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-2511"
+ },
+ "timestamp": "2025-08-28T16:31:55.192243703+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-2511"
+ },
+ "timestamp": "2025-08-28T16:31:55.20791825+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-4603"
+ },
+ "timestamp": "2025-08-28T16:31:55.225863181+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-4603"
+ },
+ "timestamp": "2025-08-28T16:31:55.242417476+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-4741"
+ },
+ "timestamp": "2025-08-28T16:31:55.261081431+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-4741"
+ },
+ "timestamp": "2025-08-28T16:31:55.279844704+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-5535"
+ },
+ "timestamp": "2025-08-28T16:31:55.296948372+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-5535"
+ },
+ "timestamp": "2025-08-28T16:31:55.314429632+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-6119"
+ },
+ "timestamp": "2025-08-28T16:31:55.330535133+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-6119"
+ },
+ "timestamp": "2025-08-28T16:31:55.348214348+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-9143"
+ },
+ "timestamp": "2025-08-28T16:31:55.364788347+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-9143"
+ },
+ "timestamp": "2025-08-28T16:31:55.381752889+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4575"
+ },
+ "timestamp": "2025-08-28T16:31:55.398898447+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.1"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.3"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.4"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.7"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/erts@14.2.5.11"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4575"
+ },
+ "timestamp": "2025-08-28T16:31:55.415390248+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-48795"
+ },
+ "timestamp": "2025-08-28T16:31:55.433429189+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Mitigation: If strict KEX availability cannot be ensured on both connection sides, affected encryption modes(CHACHA and CBC) can be disabled with standard ssh configuration. This will provide protection against vulnerability, but at a cost of affecting interoperability",
+ "action_statement_timestamp": "2025-08-28T16:31:55.433429189+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-48795"
+ },
+ "timestamp": "2025-08-28T16:31:55.449852183+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.1"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-26618"
+ },
+ "timestamp": "2025-08-28T16:31:55.467500309+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.5"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to the next version",
+ "action_statement_timestamp": "2025-08-28T16:31:55.467500309+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-26618"
+ },
+ "timestamp": "2025-08-28T16:31:55.484858368+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.6"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-32433"
+ },
+ "timestamp": "2025-08-28T16:31:55.503170489+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.7"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "A temporary workaround involves disabling the SSH server or to prevent access via firewall rules.",
+ "action_statement_timestamp": "2025-08-28T16:31:55.503170489+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-32433"
+ },
+ "timestamp": "2025-08-28T16:31:55.519994676+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.8"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-46712"
+ },
+ "timestamp": "2025-08-28T16:31:55.538537108+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.8"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to the next version",
+ "action_statement_timestamp": "2025-08-28T16:31:55.538537108+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-46712"
+ },
+ "timestamp": "2025-08-28T16:31:55.55674843+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.9"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4748"
+ },
+ "timestamp": "2025-08-28T16:31:55.573170701+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.0"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.0.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.0.2"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.1.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.2"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.2.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.2.2"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.2.3"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.2.3.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.2.3.2"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.2.3.3"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Mitigation: Update to pkg:otp/stdlib@5.2.3.4",
+ "action_statement_timestamp": "2025-08-28T16:31:55.573170701+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4748"
+ },
+ "timestamp": "2025-08-28T16:31:55.590601204+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:otp/stdlib@5.2.3.4"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-30211"
+ },
+ "timestamp": "2025-08-28T16:31:55.606487306+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.6"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Workaround: set option `parallel_login` to false. Reduce `max_sessions` option.",
+ "action_statement_timestamp": "2025-08-28T16:31:55.606487306+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-30211"
+ },
+ "timestamp": "2025-08-28T16:31:55.624228684+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.7"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-53846"
+ },
+ "timestamp": "2025-08-28T16:31:55.640907555+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.1"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.4"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.4.1"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.4.4"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.4.5"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to ssl@11.1.4.6",
+ "action_statement_timestamp": "2025-08-28T16:31:55.640907555+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-53846"
+ },
+ "timestamp": "2025-08-28T16:31:55.660153121+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.1.4.6"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48038"
+ },
+ "timestamp": "2025-09-16T08:22:17.547011966Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.11"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.1.4.12",
+ "action_statement_timestamp": "2025-09-16T08:22:17.547011966Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48038"
+ },
+ "timestamp": "2025-09-16T08:22:17.565861422Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.15"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.12"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48039"
+ },
+ "timestamp": "2025-09-16T08:22:17.584641996Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.11"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.1.4.12",
+ "action_statement_timestamp": "2025-09-16T08:22:17.584641996Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48039"
+ },
+ "timestamp": "2025-09-16T08:22:17.603878224Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.15"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.12"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48040"
+ },
+ "timestamp": "2025-09-16T08:22:17.62403072Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.11"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.1.4.12",
+ "action_statement_timestamp": "2025-09-16T08:22:17.62403072Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48040"
+ },
+ "timestamp": "2025-09-16T08:22:17.643000813Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.15"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.12"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2016-1000107"
+ },
+ "timestamp": "2025-09-16T08:22:17.66303789Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/inets@9.0"
+ },
+ {
+ "@id": "pkg:otp/inets@9.0.1"
+ },
+ {
+ "@id": "pkg:otp/inets@9.0.2"
+ },
+ {
+ "@id": "pkg:otp/inets@9.1"
+ },
+ {
+ "@id": "pkg:otp/inets@9.1.0.1"
+ },
+ {
+ "@id": "pkg:otp/inets@9.1.0.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/inets@9.1.0.3",
+ "action_statement_timestamp": "2025-09-16T08:22:17.66303789Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2016-1000107"
+ },
+ "timestamp": "2025-09-16T08:22:17.682476147Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.15"
+ },
+ {
+ "@id": "pkg:otp/inets@9.1.0.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48041"
+ },
+ "timestamp": "2025-09-16T08:22:17.702083402Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.8"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.9"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.10"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.11"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.12"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.13"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.14"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.0.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.11"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.1.4.12",
+ "action_statement_timestamp": "2025-09-16T08:22:17.702083402Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48041"
+ },
+ "timestamp": "2025-09-16T08:22:17.72269681Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-26.2.5.15"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.1.4.12"
+ }
+ ],
+ "status": "fixed"
+ }
+ ]
+}
diff --git a/vex/otp-26.openvex.json.license b/vex/otp-26.openvex.json.license
new file mode 100644
index 0000000000..1ea854fee3
--- /dev/null
+++ b/vex/otp-26.openvex.json.license
@@ -0,0 +1,7 @@
+%CopyrightBegin%
+
+SPDX-License-Identifier: Apache-2.0
+
+Copyright Ericsson AB 2025. All Rights Reserved.
+
+%CopyrightEnd%
diff --git a/vex/otp-27.openvex.json b/vex/otp-27.openvex.json
new file mode 100644
index 0000000000..03b4279b07
--- /dev/null
+++ b/vex/otp-27.openvex.json
@@ -0,0 +1,2612 @@
+{
+ "@context": "https://openvex.dev/ns/v0.2.0",
+ "@id": "https://openvex.dev/docs/public/otp/vex-otp-27",
+ "author": "vexctl",
+ "timestamp": "2025-08-29T10:32:50.272313+02:00",
+ "last_updated": "2025-09-16T08:22:15.513622151Z",
+ "version": 47,
+ "statements": [
+ {
+ "vulnerability": {
+ "name": "CVE-2023-45853"
+ },
+ "timestamp": "2025-08-29T10:33:30.800535795+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-45853"
+ },
+ "timestamp": "2025-08-29T10:33:30.824022818+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/madler/zlib@04f42ceca40f73e2978b50e93806c2a18c1281fc"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-6129"
+ },
+ "timestamp": "2025-08-29T10:33:30.841980306+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-6129"
+ },
+ "timestamp": "2025-08-29T10:33:30.859430213+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-6237"
+ },
+ "timestamp": "2025-08-29T10:33:30.876337978+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-6237"
+ },
+ "timestamp": "2025-08-29T10:33:30.892722179+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-0727"
+ },
+ "timestamp": "2025-08-29T10:33:30.910216444+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-0727"
+ },
+ "timestamp": "2025-08-29T10:33:30.926647348+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-13176"
+ },
+ "timestamp": "2025-08-29T10:33:30.944083221+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-13176"
+ },
+ "timestamp": "2025-08-29T10:33:30.960966308+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-2511"
+ },
+ "timestamp": "2025-08-29T10:33:30.976755562+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-2511"
+ },
+ "timestamp": "2025-08-29T10:33:30.994189502+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-4603"
+ },
+ "timestamp": "2025-08-29T10:33:31.009866131+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-4603"
+ },
+ "timestamp": "2025-08-29T10:33:31.026805289+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-4741"
+ },
+ "timestamp": "2025-08-29T10:33:31.041528968+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-4741"
+ },
+ "timestamp": "2025-08-29T10:33:31.058967636+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-5535"
+ },
+ "timestamp": "2025-08-29T10:33:31.075108293+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-5535"
+ },
+ "timestamp": "2025-08-29T10:33:31.093478722+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-6119"
+ },
+ "timestamp": "2025-08-29T10:33:31.113900628+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-6119"
+ },
+ "timestamp": "2025-08-29T10:33:31.13329083+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-9143"
+ },
+ "timestamp": "2025-08-29T10:33:31.151763299+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-9143"
+ },
+ "timestamp": "2025-08-29T10:33:31.167136773+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4575"
+ },
+ "timestamp": "2025-08-29T10:33:31.184288796+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.5.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0"
+ },
+ {
+ "@id": "pkg:otp/erts@15.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.1.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.1"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.2"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.3"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.4"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.5"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.6"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7"
+ },
+ {
+ "@id": "pkg:otp/erts@15.2.7.1"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4575"
+ },
+ "timestamp": "2025-08-29T10:33:31.199776515+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-26618"
+ },
+ "timestamp": "2025-08-29T10:33:31.217617784+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.6"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to the next version",
+ "action_statement_timestamp": "2025-08-29T10:33:31.217617784+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-26618"
+ },
+ "timestamp": "2025-08-29T10:33:31.233913609+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.7"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-46712"
+ },
+ "timestamp": "2025-08-29T10:33:31.251737653+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.10"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to ssh@5.2.11",
+ "action_statement_timestamp": "2025-08-29T10:33:31.251737653+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-46712"
+ },
+ "timestamp": "2025-08-29T10:33:31.269168306+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4748"
+ },
+ "timestamp": "2025-08-29T10:33:31.284483035+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:otp/stdlib@6.0"
+ },
+ {
+ "@id": "pkg:otp/stdlib@6.0.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@6.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@6.1.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@6.1.2"
+ },
+ {
+ "@id": "pkg:otp/stdlib@6.2"
+ },
+ {
+ "@id": "pkg:otp/stdlib@6.2.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@6.2.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Mitigation: Update to pkg:otp/stdlib@6.2.2.1",
+ "action_statement_timestamp": "2025-08-29T10:33:31.284483035+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4748"
+ },
+ "timestamp": "2025-08-29T10:33:31.301514602+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@6.2.2.1"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-30211"
+ },
+ "timestamp": "2025-08-29T10:33:31.317829267+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.8"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Workaround: set option `parallel_login` to false. Reduce `max_sessions` option.",
+ "action_statement_timestamp": "2025-08-29T10:33:31.317829267+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-30211"
+ },
+ "timestamp": "2025-08-29T10:33:31.334865723+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.9"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-53846"
+ },
+ "timestamp": "2025-08-29T10:33:31.35189528+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.2"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.2.2"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.2.4"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to ssl@11.2.5",
+ "action_statement_timestamp": "2025-08-29T10:33:31.35189528+02:00"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-53846"
+ },
+ "timestamp": "2025-08-29T10:33:31.369169097+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:otp/ssl@11.2.5"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48038"
+ },
+ "timestamp": "2025-09-16T08:22:15.308762291Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.2.11.3",
+ "action_statement_timestamp": "2025-09-16T08:22:15.308762291Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48038"
+ },
+ "timestamp": "2025-09-16T08:22:15.327873626Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48039"
+ },
+ "timestamp": "2025-09-16T08:22:15.345957868Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.2.11.3",
+ "action_statement_timestamp": "2025-09-16T08:22:15.345957868Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48039"
+ },
+ "timestamp": "2025-09-16T08:22:15.365152629Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48040"
+ },
+ "timestamp": "2025-09-16T08:22:15.383850246Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.2.11.3",
+ "action_statement_timestamp": "2025-09-16T08:22:15.383850246Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48040"
+ },
+ "timestamp": "2025-09-16T08:22:15.401599789Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2016-1000107"
+ },
+ "timestamp": "2025-09-16T08:22:15.421198266Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/inets@9.2"
+ },
+ {
+ "@id": "pkg:otp/inets@9.3"
+ },
+ {
+ "@id": "pkg:otp/inets@9.3.1"
+ },
+ {
+ "@id": "pkg:otp/inets@9.3.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/inets@9.3.2.1",
+ "action_statement_timestamp": "2025-09-16T08:22:15.421198266Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2016-1000107"
+ },
+ "timestamp": "2025-09-16T08:22:15.43955064Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.3"
+ },
+ {
+ "@id": "pkg:otp/inets@9.3.2.1"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48041"
+ },
+ "timestamp": "2025-09-16T08:22:15.458177853Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.9"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.10"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.2.11.3",
+ "action_statement_timestamp": "2025-09-16T08:22:15.458177853Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48041"
+ },
+ "timestamp": "2025-09-16T08:22:15.476910064Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.4.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.11.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-32433"
+ },
+ "timestamp": "2025-09-16T08:22:15.495293841Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.1.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.2.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.4"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.5"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.6"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.7"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.8"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.9"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.2.10",
+ "action_statement_timestamp": "2025-09-16T08:22:15.495293841Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-32433"
+ },
+ "timestamp": "2025-09-16T08:22:15.513622982Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-27.3.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.2.10"
+ }
+ ],
+ "status": "fixed"
+ }
+ ]
+}
diff --git a/vex/otp-27.openvex.json.license b/vex/otp-27.openvex.json.license
new file mode 100644
index 0000000000..1ea854fee3
--- /dev/null
+++ b/vex/otp-27.openvex.json.license
@@ -0,0 +1,7 @@
+%CopyrightBegin%
+
+SPDX-License-Identifier: Apache-2.0
+
+Copyright Ericsson AB 2025. All Rights Reserved.
+
+%CopyrightEnd%
diff --git a/vex/otp-28.openvex.json b/vex/otp-28.openvex.json
new file mode 100644
index 0000000000..5b0a0088b5
--- /dev/null
+++ b/vex/otp-28.openvex.json
@@ -0,0 +1,478 @@
+{
+ "@context": "https://openvex.dev/ns/v0.2.0",
+ "@id": "https://openvex.dev/docs/public/otp/vex-otp-28",
+ "author": "vexctl",
+ "timestamp": "2025-08-21T10:55:45.714759+02:00",
+ "last_updated": "2025-09-18T09:59:20.278041735+02:00",
+ "version": 25,
+ "statements": [
+ {
+ "vulnerability": {
+ "name": "OSV-2025-300"
+ },
+ "timestamp": "2025-08-21T10:55:45.929417984+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/otp/erlang@OTP-28.0"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0"
+ },
+ {
+ "@id": "pkg:github/otp/erlang@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0.1"
+ },
+ {
+ "@id": "pkg:github/otp/erlang@OTP-28.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0.2"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "OSV-2025-300"
+ },
+ "timestamp": "2025-08-21T10:55:45.944352157+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/PCRE2Project/pcre2@2dce7761b1831fd3f82a9c2bd5476259d945da4d"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2023-45853"
+ },
+ "timestamp": "2025-08-21T10:55:45.958540114+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/madler/zlib@1a8db63788c34a50e39e273d39b7e1033208aea2"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4575"
+ },
+ "timestamp": "2025-08-21T10:55:46.006302174+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/otp/erlang@OTP-28.0"
+ },
+ {
+ "@id": "pkg:github/otp/erlang@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:github/otp/erlang@OTP-28.0.2"
+ },
+ {
+ "@id": "pkg:otp/erl_interface@5.6"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0.2"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4575"
+ },
+ "timestamp": "2025-08-21T10:55:46.021839572+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/openssl/openssl@01d5e2318405362b4de5e670c90d9b40a351d053"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-58050"
+ },
+ "timestamp": "2025-09-04T09:25:22.570231836+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/PCRE2Project/pcre2@2dce7761b1831fd3f82a9c2bd5476259d945da4d"
+ }
+ ],
+ "status": "under_investigation"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4748"
+ },
+ "timestamp": "2025-09-16T08:22:13.190565361Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0"
+ },
+ {
+ "@id": "pkg:otp/stdlib@7.0"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/stdlib@7.0.1",
+ "action_statement_timestamp": "2025-09-16T08:22:13.190565361Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-4748"
+ },
+ "timestamp": "2025-09-16T08:22:13.207073702Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:otp/stdlib@7.0.1"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48038"
+ },
+ "timestamp": "2025-09-16T08:22:13.223967395Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.3.3",
+ "action_statement_timestamp": "2025-09-16T08:22:13.223967395Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48038"
+ },
+ "timestamp": "2025-09-16T08:22:13.241103494Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48039"
+ },
+ "timestamp": "2025-09-16T08:22:13.25833703Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.3.3",
+ "action_statement_timestamp": "2025-09-16T08:22:13.25833703Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48039"
+ },
+ "timestamp": "2025-09-16T08:22:13.276099885Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48040"
+ },
+ "timestamp": "2025-09-16T08:22:13.293602631Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.3.3",
+ "action_statement_timestamp": "2025-09-16T08:22:13.293602631Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48040"
+ },
+ "timestamp": "2025-09-16T08:22:13.310576529Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2016-1000107"
+ },
+ "timestamp": "2025-09-16T08:22:13.327917962Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.3"
+ },
+ {
+ "@id": "pkg:otp/inets@9.4"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/inets@9.4.1",
+ "action_statement_timestamp": "2025-09-16T08:22:13.327917962Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2016-1000107"
+ },
+ "timestamp": "2025-09-16T08:22:13.344395872Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.4"
+ },
+ {
+ "@id": "pkg:otp/inets@9.4.1"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48041"
+ },
+ "timestamp": "2025-09-16T08:22:13.361673347Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.2"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.1"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/ssh@5.3.3",
+ "action_statement_timestamp": "2025-09-16T08:22:13.361673347Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-48041"
+ },
+ "timestamp": "2025-09-16T08:22:13.378510169Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.3"
+ },
+ {
+ "@id": "pkg:otp/ssh@5.3.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-58050"
+ },
+ "timestamp": "2025-09-16T08:22:13.3955185Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.2"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0.1"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0.2"
+ }
+ ],
+ "status": "affected",
+ "action_statement": "Update to any of the following versions: pkg:otp/erts@16.0.3",
+ "action_statement_timestamp": "2025-09-16T08:22:13.3955185Z"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2025-58050"
+ },
+ "timestamp": "2025-09-16T08:22:13.412872667Z",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.4"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.3"
+ },
+ {
+ "@id": "pkg:otp/erts@16.0.3"
+ }
+ ],
+ "status": "fixed"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-58249"
+ },
+ "timestamp": "2025-09-18T09:59:20.262521222+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.1"
+ },
+ {
+ "@id": "pkg:otp/wx@2.5"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.2"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.3"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.0.4"
+ },
+ {
+ "@id": "pkg:otp/wx@2.5.1"
+ },
+ {
+ "@id": "pkg:github/erlang/otp@OTP-28.1"
+ },
+ {
+ "@id": "pkg:otp/wx@2.5.2"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ },
+ {
+ "vulnerability": {
+ "name": "CVE-2024-58249"
+ },
+ "timestamp": "2025-09-18T09:59:20.278042349+02:00",
+ "products": [
+ {
+ "@id": "pkg:github/wxWidgets/wxWidgets@dc585039bbd426829e3433002023a93f9bedd0c2"
+ }
+ ],
+ "status": "not_affected",
+ "justification": "vulnerable_code_not_present"
+ }
+ ]
+}
diff --git a/vex/otp-28.openvex.json.license b/vex/otp-28.openvex.json.license
new file mode 100644
index 0000000000..1ea854fee3
--- /dev/null
+++ b/vex/otp-28.openvex.json.license
@@ -0,0 +1,7 @@
+%CopyrightBegin%
+
+SPDX-License-Identifier: Apache-2.0
+
+Copyright Ericsson AB 2025. All Rights Reserved.
+
+%CopyrightEnd%
--
2.51.0
