tukaani

Security Risk Profile

/100

low

Security Risk Score

Comprehensive risk assessment based on 9 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from May 20, 2015 to present

Total CVEs

Critical+High

Exploited

Unpatched

Threat Assessment

Avg CVSS

5.8

Base severity

Avg EPSS

10%

Exploit probability

Unpatched

Critical/High

Risk Level

28/100

low

Severity Distribution

Critical

High

Medium

Low

Exploit Likelihood

>50% chance

20-50%

5-20%

<5%

Age Distribution

Common Weaknesses (CWE)

Input Validation

Buffer Overflow

Most Affected Products

1. redhat/xz8

2. Tukaani XZ7

3. redhat/gzip7

4. debian/xz-utils3

5. Tukaani XZ Utils3

Recent Vulnerabilities

See more →

CVE-2026-34743

CVSS 1.7low

XZ Utils: Buffer overflow in lzma_index_append()

4/2/2026

https://seclists.org/oss-sec/2026/q1/428

unknown

Fwd: XZ Utils 5.8.3 and a security fix

3/31/2026🔧 No Patch

https://seclists.org/oss-sec/2025/q2/9

unknown

XZ Utils: Thaded decoder fes memory too early (CVE-2025-31115)

4/3/2025🔧 No Patch

https://seclists.org/oss-sec/2024/q3/78

unknown

Landlock news #4

7/16/2024🔧 No Patch

CVE-2024-3094

CVSS 10.0EPSS 10%critical

Xz: malicious code in distributed source

Tukaani XZ Utils xzgrep Argument Injection Remote Code Execution Vulnerability

Monitor tukaani in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free Trial Book a Demo

tukaani

Security Risk Score

Threat Assessment

Severity Distribution

Exploit Likelihood

Age Distribution

Common Weaknesses (CWE)

Most Affected Products

Recent Vulnerabilities

Monitor tukaani in Real-Time

Monitor Your Software Stack in Real-Time