CVE-2025-6966 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
canonical	CNA	---				---
CISA-ADP	ADP	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 2%

Vendor	Product	Version
ubuntu	python-apt	𝑥 < 0.9.3.11
ubuntu	python-apt	1.6.0 ≤ 𝑥 < 1.6.6
ubuntu	python-apt	2.0.0 ≤ 𝑥 < 2.0.1
ubuntu	python-apt	2.7.0 ≤ 𝑥 < 2.7.7
ubuntu	python-apt	0.9.3.5:ubuntu1
ubuntu	python-apt	0.9.3.5:ubuntu2
ubuntu	python-apt	0.9.3.11
ubuntu	python-apt	0.9.3.11:build1
ubuntu	python-apt	1.1.0:beta1
ubuntu	python-apt	1.1.0:beta1build1
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.1
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.10
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.11
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.2
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.3
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.4
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.5
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.7
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.8
ubuntu	python-apt	1.1.0:beta1ubuntu0.16.04.9
ubuntu	python-apt	1.1.0:beta2ubuntu1
ubuntu	python-apt	1.1.0:beta3
ubuntu	python-apt	1.1.0:beta4
ubuntu	python-apt	1.1.0:beta4ubuntu1
ubuntu	python-apt	1.1.0:beta5
ubuntu	python-apt	1.1.0:beta5ubuntu1
ubuntu	python-apt	1.6.6
ubuntu	python-apt	2.0.1
ubuntu	python-apt	2.4.0:\+22.10
ubuntu	python-apt	2.4.0
ubuntu	python-apt	2.4.0:ubuntu1
ubuntu	python-apt	2.4.0:ubuntu2
ubuntu	python-apt	2.4.0:ubuntu3
ubuntu	python-apt	2.4.0:ubuntu4
ubuntu	python-apt	2.7.7
ubuntu	python-apt	2.7.7:build1
ubuntu	python-apt	2.7.7:ubuntu1
ubuntu	python-apt	2.7.7:ubuntu2
ubuntu	python-apt	2.7.7:ubuntu3
ubuntu	python-apt	2.7.7:ubuntu4
ubuntu	python-apt	2.7.7:ubuntu5
ubuntu	python-apt	3.0.0
ubuntu	python-apt	3.0.0:ubuntu1
debian	debian_linux	11.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

python-apt

bullseye	vulnerable
trixie	no-dsa
bookworm	no-dsa
bullseye (security)	2.2.1.1 fixed
forky	3.1.0 fixed
sid	3.1.0 fixed

Known Exploits!

https://bugs.launchpad.net/ubuntu/+source/python-apt/+bug/2091865

Common Weakness Enumeration

CWE-476 - NULL Pointer Dereference
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

References

https://bugs.launchpad.net/ubuntu/+source/python-apt/+bug/2091865

https://lists.debian.org/debian-lts-announce/2025/12/msg00019.html