{
    "document": {
        "category": "csaf_security_advisory",
        "csaf_version": "2.0",
        "distribution": {
            "tlp": {
                "label": "WHITE"
            }
        },
        "lang": "nl",
        "notes": [
            {
                "category": "legal_disclaimer",
                "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
            },
            {
                "category": "description",
                "text": "Oracle heeft meerdere kwetsbaarheden verholpen in Oracle PeopleSoft, specifiek in de versies 8.60, 8.61 en 9.2.",
                "title": "Feiten"
            },
            {
                "category": "description",
                "text": "De kwetsbaarheden in Oracle PeopleSoft stellen geauthenticeerde kwaadwillenden in staat om via HTTP-netwerktoegang ongeautoriseerde toegang te krijgen tot specifieke gegevens, wat kan leiden tot ongeautoriseerde gegevensmanipulatie en -toegang. Kwaadwillenden kunnen ook een Denial-of-Service veroorzaken. Hiervoor heeft de kwaadwillende geen voorafgaande authenticatie nodig.",
                "title": "Interpretaties"
            },
            {
                "category": "description",
                "text": "Oracle heeft updates uitgebracht om de kwetsbaarheden in PeopleSoft te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
                "title": "Oplossingen"
            },
            {
                "category": "general",
                "text": "medium",
                "title": "Kans"
            },
            {
                "category": "general",
                "text": "high",
                "title": "Schade"
            },
            {
                "category": "general",
                "text": "Always-Incorrect Control Flow Implementation",
                "title": "CWE-670"
            },
            {
                "category": "general",
                "text": "Dependency on Vulnerable Third-Party Component",
                "title": "CWE-1395"
            },
            {
                "category": "general",
                "text": "Incorrect Resource Transfer Between Spheres",
                "title": "CWE-669"
            },
            {
                "category": "general",
                "text": "Buffer Over-read",
                "title": "CWE-126"
            },
            {
                "category": "general",
                "text": "Out-of-bounds Read",
                "title": "CWE-125"
            },
            {
                "category": "general",
                "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
                "title": "CWE-119"
            },
            {
                "category": "general",
                "text": "Uncontrolled Resource Consumption",
                "title": "CWE-400"
            },
            {
                "category": "general",
                "text": "Allocation of Resources Without Limits or Throttling",
                "title": "CWE-770"
            },
            {
                "category": "general",
                "text": "Out-of-bounds Write",
                "title": "CWE-787"
            },
            {
                "category": "general",
                "text": "Exposure of Sensitive Information to an Unauthorized Actor",
                "title": "CWE-200"
            },
            {
                "category": "general",
                "text": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
                "title": "CWE-120"
            }
        ],
        "publisher": {
            "category": "coordinator",
            "contact_details": "cert@ncsc.nl",
            "name": "Nationaal Cyber Security Centrum",
            "namespace": "https://www.ncsc.nl/"
        },
        "references": [
            {
                "category": "external",
                "summary": "Reference - cveprojectv5; nvd; oracle",
                "url": "https://www.oracle.com/security-alerts/cpujan2025.html"
            }
        ],
        "title": "Kwetsbaarheden verholpen in Oracle PeopleSoft",
        "tracking": {
            "current_release_date": "2025-01-22T13:31:17.380797Z",
            "id": "NCSC-2025-0023",
            "initial_release_date": "2025-01-22T13:31:17.380797Z",
            "revision_history": [
                {
                    "date": "2025-01-22T13:31:17.380797Z",
                    "number": "0",
                    "summary": "Initiele versie"
                }
            ],
            "status": "final",
            "version": "1.0.0"
        }
    },
    "product_tree": {
        "branches": [
            {
                "branches": [
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_cc_common_application_objects",
                        "product": {
                            "name": "peoplesoft_enterprise_cc_common_application_objects",
                            "product_id": "CSAFPID-449779",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_cc_common_application_objects:9.2:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_fin_cash_management",
                        "product": {
                            "name": "peoplesoft_enterprise_fin_cash_management",
                            "product_id": "CSAFPID-765405",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_fin_cash_management:9.2:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_fin_esettlements",
                        "product": {
                            "name": "peoplesoft_enterprise_fin_esettlements",
                            "product_id": "CSAFPID-1751153",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_fin_esettlements:9.2:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_hcm_human_resources",
                        "product": {
                            "name": "peoplesoft_enterprise_hcm_human_resources",
                            "product_id": "CSAFPID-172663",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_hcm_human_resources:9.2:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_hcm_shared_components",
                        "product": {
                            "name": "peoplesoft_enterprise_hcm_shared_components",
                            "product_id": "CSAFPID-607590",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_hcm_shared_components:9.2:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_peopletools",
                        "product": {
                            "name": "peoplesoft_enterprise_peopletools",
                            "product_id": "CSAFPID-1682",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_peopletools",
                        "product": {
                            "name": "peoplesoft_enterprise_peopletools",
                            "product_id": "CSAFPID-1681",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.60:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_peopletools",
                        "product": {
                            "name": "peoplesoft_enterprise_peopletools",
                            "product_id": "CSAFPID-816362",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.61:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_peopletools",
                        "product": {
                            "name": "peoplesoft_enterprise_peopletools",
                            "product_id": "CSAFPID-1503667",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:_opensearch___8.59:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_peopletools",
                        "product": {
                            "name": "peoplesoft_enterprise_peopletools",
                            "product_id": "CSAFPID-1503672",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:_opensearch___8.60:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_peopletools",
                        "product": {
                            "name": "peoplesoft_enterprise_peopletools",
                            "product_id": "CSAFPID-1503676",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:_opensearch___8.61:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_peopletools",
                        "product": {
                            "name": "peoplesoft_enterprise_peopletools",
                            "product_id": "CSAFPID-1503669",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:_web_server___8.59:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_peopletools",
                        "product": {
                            "name": "peoplesoft_enterprise_peopletools",
                            "product_id": "CSAFPID-1503673",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:_web_server___8.60:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_peopletools",
                        "product": {
                            "name": "peoplesoft_enterprise_peopletools",
                            "product_id": "CSAFPID-1503678",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:_web_server___8.61:*:*:*:*:*:*:*"
                            }
                        }
                    },
                    {
                        "category": "product_name",
                        "name": "peoplesoft_enterprise_scm_purchasing",
                        "product": {
                            "name": "peoplesoft_enterprise_scm_purchasing",
                            "product_id": "CSAFPID-172660",
                            "product_identification_helper": {
                                "cpe": "cpe:2.3:a:oracle:peoplesoft_enterprise_scm_purchasing:9.2:*:*:*:*:*:*:*"
                            }
                        }
                    }
                ],
                "category": "vendor",
                "name": "oracle"
            }
        ]
    },
    "vulnerabilities": [
        {
            "cve": "CVE-2020-22218",
            "cwe": {
                "id": "CWE-125",
                "name": "Out-of-bounds Read"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Out-of-bounds Read",
                    "title": "CWE-125"
                },
                {
                    "category": "other",
                    "text": "Out-of-bounds Write",
                    "title": "CWE-787"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2020-22218",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-22218.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                        "baseScore": 7.5,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2020-22218"
        },
        {
            "cve": "CVE-2023-48795",
            "cwe": {
                "id": "CWE-222",
                "name": "Truncation of Security-relevant Information"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Truncation of Security-relevant Information",
                    "title": "CWE-222"
                },
                {
                    "category": "other",
                    "text": "Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')",
                    "title": "CWE-757"
                },
                {
                    "category": "other",
                    "text": "Improper Validation of Integrity Check Value",
                    "title": "CWE-354"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-1682",
                    "CSAFPID-1681",
                    "CSAFPID-816362",
                    "CSAFPID-172663",
                    "CSAFPID-607590",
                    "CSAFPID-1503667",
                    "CSAFPID-1503669",
                    "CSAFPID-1503672",
                    "CSAFPID-1503673",
                    "CSAFPID-1503676",
                    "CSAFPID-1503678"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2023-48795",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-48795.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                        "baseScore": 7.5,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-1682",
                        "CSAFPID-1681",
                        "CSAFPID-816362",
                        "CSAFPID-172663",
                        "CSAFPID-607590",
                        "CSAFPID-1503667",
                        "CSAFPID-1503669",
                        "CSAFPID-1503672",
                        "CSAFPID-1503673",
                        "CSAFPID-1503676",
                        "CSAFPID-1503678"
                    ]
                }
            ],
            "title": "CVE-2023-48795"
        },
        {
            "cve": "CVE-2024-0397",
            "product_status": {
                "known_affected": [
                    "CSAFPID-172663",
                    "CSAFPID-607590",
                    "CSAFPID-1503667",
                    "CSAFPID-1503669",
                    "CSAFPID-1682",
                    "CSAFPID-1503672",
                    "CSAFPID-1503673",
                    "CSAFPID-1681",
                    "CSAFPID-1503676",
                    "CSAFPID-1503678",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-0397",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0397.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                        "baseScore": 7.5,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-172663",
                        "CSAFPID-607590",
                        "CSAFPID-1503667",
                        "CSAFPID-1503669",
                        "CSAFPID-1682",
                        "CSAFPID-1503672",
                        "CSAFPID-1503673",
                        "CSAFPID-1681",
                        "CSAFPID-1503676",
                        "CSAFPID-1503678",
                        "CSAFPID-816362"
                    ]
                }
            ],
            "title": "CVE-2024-0397"
        },
        {
            "cve": "CVE-2024-2511",
            "cwe": {
                "id": "CWE-404",
                "name": "Improper Resource Shutdown or Release"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Improper Resource Shutdown or Release",
                    "title": "CWE-404"
                },
                {
                    "category": "other",
                    "text": "Uncontrolled Resource Consumption",
                    "title": "CWE-400"
                },
                {
                    "category": "other",
                    "text": "Improperly Controlled Sequential Memory Allocation",
                    "title": "CWE-1325"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-172663",
                    "CSAFPID-607590",
                    "CSAFPID-1503667",
                    "CSAFPID-1503669",
                    "CSAFPID-1682",
                    "CSAFPID-1503672",
                    "CSAFPID-1503673",
                    "CSAFPID-1681",
                    "CSAFPID-1503676",
                    "CSAFPID-1503678",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-2511",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-2511.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                        "baseScore": 9.1,
                        "baseSeverity": "CRITICAL"
                    },
                    "products": [
                        "CSAFPID-172663",
                        "CSAFPID-607590",
                        "CSAFPID-1503667",
                        "CSAFPID-1503669",
                        "CSAFPID-1682",
                        "CSAFPID-1503672",
                        "CSAFPID-1503673",
                        "CSAFPID-1681",
                        "CSAFPID-1503676",
                        "CSAFPID-1503678",
                        "CSAFPID-816362"
                    ]
                }
            ],
            "title": "CVE-2024-2511"
        },
        {
            "cve": "CVE-2024-4030",
            "cwe": {
                "id": "CWE-276",
                "name": "Incorrect Default Permissions"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Incorrect Default Permissions",
                    "title": "CWE-276"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-4030",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4030.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                        "baseScore": 7.5,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-4030"
        },
        {
            "cve": "CVE-2024-4032",
            "cwe": {
                "id": "CWE-440",
                "name": "Expected Behavior Violation"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Expected Behavior Violation",
                    "title": "CWE-440"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-4032",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4032.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                        "baseScore": 7.5,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-4032"
        },
        {
            "cve": "CVE-2024-4603",
            "cwe": {
                "id": "CWE-606",
                "name": "Unchecked Input for Loop Condition"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Unchecked Input for Loop Condition",
                    "title": "CWE-606"
                },
                {
                    "category": "other",
                    "text": "Excessive Iteration",
                    "title": "CWE-834"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-172663",
                    "CSAFPID-607590",
                    "CSAFPID-1503667",
                    "CSAFPID-1503669",
                    "CSAFPID-1682",
                    "CSAFPID-1503672",
                    "CSAFPID-1503673",
                    "CSAFPID-1681",
                    "CSAFPID-1503676",
                    "CSAFPID-1503678",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-4603",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4603.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                        "baseScore": 9.1,
                        "baseSeverity": "CRITICAL"
                    },
                    "products": [
                        "CSAFPID-172663",
                        "CSAFPID-607590",
                        "CSAFPID-1503667",
                        "CSAFPID-1503669",
                        "CSAFPID-1682",
                        "CSAFPID-1503672",
                        "CSAFPID-1503673",
                        "CSAFPID-1681",
                        "CSAFPID-1503676",
                        "CSAFPID-1503678",
                        "CSAFPID-816362"
                    ]
                }
            ],
            "title": "CVE-2024-4603"
        },
        {
            "cve": "CVE-2024-4741",
            "cwe": {
                "id": "CWE-416",
                "name": "Use After Free"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Use After Free",
                    "title": "CWE-416"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-172663",
                    "CSAFPID-607590",
                    "CSAFPID-1503667",
                    "CSAFPID-1503669",
                    "CSAFPID-1682",
                    "CSAFPID-1503672",
                    "CSAFPID-1503673",
                    "CSAFPID-1681",
                    "CSAFPID-1503676",
                    "CSAFPID-1503678",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-4741",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4741.json"
                }
            ],
            "title": "CVE-2024-4741"
        },
        {
            "cve": "CVE-2024-5535",
            "cwe": {
                "id": "CWE-200",
                "name": "Exposure of Sensitive Information to an Unauthorized Actor"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Exposure of Sensitive Information to an Unauthorized Actor",
                    "title": "CWE-200"
                },
                {
                    "category": "other",
                    "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
                    "title": "CWE-119"
                },
                {
                    "category": "other",
                    "text": "Dependency on Vulnerable Third-Party Component",
                    "title": "CWE-1395"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-1681",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-5535",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-5535.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                        "baseScore": 9.1,
                        "baseSeverity": "CRITICAL"
                    },
                    "products": [
                        "CSAFPID-1681",
                        "CSAFPID-816362"
                    ]
                }
            ],
            "title": "CVE-2024-5535"
        },
        {
            "cve": "CVE-2024-6119",
            "cwe": {
                "id": "CWE-843",
                "name": "Access of Resource Using Incompatible Type ('Type Confusion')"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Access of Resource Using Incompatible Type ('Type Confusion')",
                    "title": "CWE-843"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-6119",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6119.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                        "baseScore": 9.1,
                        "baseSeverity": "CRITICAL"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-6119"
        },
        {
            "cve": "CVE-2024-6232",
            "cwe": {
                "id": "CWE-1333",
                "name": "Inefficient Regular Expression Complexity"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Inefficient Regular Expression Complexity",
                    "title": "CWE-1333"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-6232",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6232.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                        "baseScore": 7.5,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-6232"
        },
        {
            "cve": "CVE-2024-7592",
            "cwe": {
                "id": "CWE-400",
                "name": "Uncontrolled Resource Consumption"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Uncontrolled Resource Consumption",
                    "title": "CWE-400"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-7592",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-7592.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                        "baseScore": 7.5,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-7592"
        },
        {
            "cve": "CVE-2024-22018",
            "cwe": {
                "id": "CWE-275",
                "name": "-"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "CWE-275",
                    "title": "CWE-275"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-22018",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22018.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H",
                        "baseScore": 7.1,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-22018"
        },
        {
            "cve": "CVE-2024-22019",
            "cwe": {
                "id": "CWE-400",
                "name": "Uncontrolled Resource Consumption"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Uncontrolled Resource Consumption",
                    "title": "CWE-400"
                },
                {
                    "category": "other",
                    "text": "Improper Resource Shutdown or Release",
                    "title": "CWE-404"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-1681",
                    "CSAFPID-1682",
                    "CSAFPID-816362",
                    "CSAFPID-172663",
                    "CSAFPID-607590",
                    "CSAFPID-1503667",
                    "CSAFPID-1503669",
                    "CSAFPID-1503672",
                    "CSAFPID-1503673",
                    "CSAFPID-1503676",
                    "CSAFPID-1503678"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-22019",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22019.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
                        "baseScore": 8.2,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-1681",
                        "CSAFPID-1682",
                        "CSAFPID-816362",
                        "CSAFPID-172663",
                        "CSAFPID-607590",
                        "CSAFPID-1503667",
                        "CSAFPID-1503669",
                        "CSAFPID-1503672",
                        "CSAFPID-1503673",
                        "CSAFPID-1503676",
                        "CSAFPID-1503678"
                    ]
                }
            ],
            "title": "CVE-2024-22019"
        },
        {
            "cve": "CVE-2024-22020",
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-22020",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22020.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
                        "baseScore": 8.2,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-22020"
        },
        {
            "cve": "CVE-2024-27280",
            "cwe": {
                "id": "CWE-120",
                "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
                    "title": "CWE-120"
                },
                {
                    "category": "other",
                    "text": "Buffer Over-read",
                    "title": "CWE-126"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-27280",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-27280.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                        "baseScore": 9.8,
                        "baseSeverity": "CRITICAL"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-27280"
        },
        {
            "cve": "CVE-2024-27281",
            "cwe": {
                "id": "CWE-94",
                "name": "Improper Control of Generation of Code ('Code Injection')"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Improper Control of Generation of Code ('Code Injection')",
                    "title": "CWE-94"
                },
                {
                    "category": "other",
                    "text": "Deserialization of Untrusted Data",
                    "title": "CWE-502"
                },
                {
                    "category": "other",
                    "text": "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')",
                    "title": "CWE-74"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-1681",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-27281",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-27281.json"
                }
            ],
            "title": "CVE-2024-27281"
        },
        {
            "cve": "CVE-2024-27282",
            "cwe": {
                "id": "CWE-122",
                "name": "Heap-based Buffer Overflow"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Heap-based Buffer Overflow",
                    "title": "CWE-122"
                },
                {
                    "category": "other",
                    "text": "Out-of-bounds Read",
                    "title": "CWE-125"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-27282",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-27282.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                        "baseScore": 8.1,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-27282"
        },
        {
            "cve": "CVE-2024-28849",
            "cwe": {
                "id": "CWE-200",
                "name": "Exposure of Sensitive Information to an Unauthorized Actor"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Exposure of Sensitive Information to an Unauthorized Actor",
                    "title": "CWE-200"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-172663",
                    "CSAFPID-607590",
                    "CSAFPID-1503667",
                    "CSAFPID-1503669",
                    "CSAFPID-1682",
                    "CSAFPID-1503672",
                    "CSAFPID-1503673",
                    "CSAFPID-1681",
                    "CSAFPID-1503676",
                    "CSAFPID-1503678",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-28849",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28849.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                        "baseScore": 6.5,
                        "baseSeverity": "MEDIUM"
                    },
                    "products": [
                        "CSAFPID-172663",
                        "CSAFPID-607590",
                        "CSAFPID-1503667",
                        "CSAFPID-1503669",
                        "CSAFPID-1682",
                        "CSAFPID-1503672",
                        "CSAFPID-1503673",
                        "CSAFPID-1681",
                        "CSAFPID-1503676",
                        "CSAFPID-1503678",
                        "CSAFPID-816362"
                    ]
                }
            ],
            "title": "CVE-2024-28849"
        },
        {
            "cve": "CVE-2024-29025",
            "cwe": {
                "id": "CWE-770",
                "name": "Allocation of Resources Without Limits or Throttling"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Allocation of Resources Without Limits or Throttling",
                    "title": "CWE-770"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-172663",
                    "CSAFPID-607590",
                    "CSAFPID-1503667",
                    "CSAFPID-1503669",
                    "CSAFPID-1682",
                    "CSAFPID-1503672",
                    "CSAFPID-1503673",
                    "CSAFPID-1681",
                    "CSAFPID-1503676",
                    "CSAFPID-1503678",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-29025",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29025.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                        "baseScore": 7.3,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-172663",
                        "CSAFPID-607590",
                        "CSAFPID-1503667",
                        "CSAFPID-1503669",
                        "CSAFPID-1682",
                        "CSAFPID-1503672",
                        "CSAFPID-1503673",
                        "CSAFPID-1681",
                        "CSAFPID-1503676",
                        "CSAFPID-1503678",
                        "CSAFPID-816362"
                    ]
                }
            ],
            "title": "CVE-2024-29025"
        },
        {
            "cve": "CVE-2024-35195",
            "cwe": {
                "id": "CWE-670",
                "name": "Always-Incorrect Control Flow Implementation"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Always-Incorrect Control Flow Implementation",
                    "title": "CWE-670"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-35195",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35195.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N",
                        "baseScore": 5.7,
                        "baseSeverity": "MEDIUM"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-35195"
        },
        {
            "cve": "CVE-2024-36137",
            "cwe": {
                "id": "CWE-275",
                "name": "-"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "CWE-275",
                    "title": "CWE-275"
                },
                {
                    "category": "other",
                    "text": "Incorrect Permission Assignment for Critical Resource",
                    "title": "CWE-732"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-36137",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36137.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H",
                        "baseScore": 7.1,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-36137"
        },
        {
            "cve": "CVE-2024-36138",
            "cwe": {
                "id": "CWE-77",
                "name": "Improper Neutralization of Special Elements used in a Command ('Command Injection')"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Improper Neutralization of Special Elements used in a Command ('Command Injection')",
                    "title": "CWE-77"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-36138",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36138.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                        "baseScore": 10.0,
                        "baseSeverity": "CRITICAL"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-36138"
        },
        {
            "cve": "CVE-2024-37372",
            "cwe": {
                "id": "CWE-22",
                "name": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
                    "title": "CWE-22"
                },
                {
                    "category": "other",
                    "text": "Improper Check for Unusual or Exceptional Conditions",
                    "title": "CWE-754"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-37372",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37372.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H",
                        "baseScore": 7.1,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-37372"
        },
        {
            "cve": "CVE-2024-37891",
            "cwe": {
                "id": "CWE-669",
                "name": "Incorrect Resource Transfer Between Spheres"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Incorrect Resource Transfer Between Spheres",
                    "title": "CWE-669"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-37891",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37891.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
                        "baseScore": 4.4,
                        "baseSeverity": "MEDIUM"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-37891"
        },
        {
            "cve": "CVE-2024-38998",
            "cwe": {
                "id": "CWE-1321",
                "name": "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
                    "title": "CWE-1321"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-38998",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38998.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                        "baseScore": 9.8,
                        "baseSeverity": "CRITICAL"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-38998"
        },
        {
            "cve": "CVE-2024-38999",
            "cwe": {
                "id": "CWE-1321",
                "name": "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')"
            },
            "notes": [
                {
                    "category": "other",
                    "text": "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
                    "title": "CWE-1321"
                }
            ],
            "product_status": {
                "known_affected": [
                    "CSAFPID-816362",
                    "CSAFPID-1681"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2024-38999",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                        "baseScore": 10.0,
                        "baseSeverity": "CRITICAL"
                    },
                    "products": [
                        "CSAFPID-816362",
                        "CSAFPID-1681"
                    ]
                }
            ],
            "title": "CVE-2024-38999"
        },
        {
            "cve": "CVE-2025-21530",
            "product_status": {
                "known_affected": [
                    "CSAFPID-1681",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2025-21530",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21530.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                        "baseScore": 4.3,
                        "baseSeverity": "MEDIUM"
                    },
                    "products": [
                        "CSAFPID-1681",
                        "CSAFPID-816362"
                    ]
                }
            ],
            "title": "CVE-2025-21530"
        },
        {
            "cve": "CVE-2025-21537",
            "product_status": {
                "known_affected": [
                    "CSAFPID-765405"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2025-21537",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21537.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
                        "baseScore": 5.4,
                        "baseSeverity": "MEDIUM"
                    },
                    "products": [
                        "CSAFPID-765405"
                    ]
                }
            ],
            "title": "CVE-2025-21537"
        },
        {
            "cve": "CVE-2025-21539",
            "product_status": {
                "known_affected": [
                    "CSAFPID-1751153"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2025-21539",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21539.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
                        "baseScore": 5.4,
                        "baseSeverity": "MEDIUM"
                    },
                    "products": [
                        "CSAFPID-1751153"
                    ]
                }
            ],
            "title": "CVE-2025-21539"
        },
        {
            "cve": "CVE-2025-21545",
            "product_status": {
                "known_affected": [
                    "CSAFPID-1681",
                    "CSAFPID-816362"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2025-21545",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21545.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                        "baseScore": 7.5,
                        "baseSeverity": "HIGH"
                    },
                    "products": [
                        "CSAFPID-1681",
                        "CSAFPID-816362"
                    ]
                }
            ],
            "title": "CVE-2025-21545"
        },
        {
            "cve": "CVE-2025-21561",
            "product_status": {
                "known_affected": [
                    "CSAFPID-172660"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2025-21561",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21561.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
                        "baseScore": 5.4,
                        "baseSeverity": "MEDIUM"
                    },
                    "products": [
                        "CSAFPID-172660"
                    ]
                }
            ],
            "title": "CVE-2025-21561"
        },
        {
            "cve": "CVE-2025-21562",
            "product_status": {
                "known_affected": [
                    "CSAFPID-449779"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2025-21562",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21562.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                        "baseScore": 4.3,
                        "baseSeverity": "MEDIUM"
                    },
                    "products": [
                        "CSAFPID-449779"
                    ]
                }
            ],
            "title": "CVE-2025-21562"
        },
        {
            "cve": "CVE-2025-21563",
            "product_status": {
                "known_affected": [
                    "CSAFPID-449779"
                ]
            },
            "references": [
                {
                    "category": "self",
                    "summary": "CVE-2025-21563",
                    "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21563.json"
                }
            ],
            "scores": [
                {
                    "cvss_v3": {
                        "version": "3.1",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
                        "baseScore": 4.3,
                        "baseSeverity": "MEDIUM"
                    },
                    "products": [
                        "CSAFPID-449779"
                    ]
                }
            ],
            "title": "CVE-2025-21563"
        }
    ]
}