diff --git a/release-notes/9.0/cve.md b/release-notes/9.0/cve.md
index d9c15ee9be..3f6fde47d6 100644
--- a/release-notes/9.0/cve.md
+++ b/release-notes/9.0/cve.md
@@ -9,10 +9,10 @@ Your app needs to be on the latest .NET 9 patch version to be secure. The longer
 Your app may be vulnerable to the following published security [CVEs](https://www.cve.org/) if you are using an older version.
 
 - 9.0.1 (January 2025)
-  - [CVE-2025-21171 | .NET Remote Code Execution Vulnerability](https://github.com/dotnet/announcements/issues/xxx)
-  - [CVE-2025-21172 | .NET Remote Code Execution Vulnerability](https://github.com/dotnet/announcements/issues/xxx)
-  - [CVE-2025-21173 | .NET Elevation of Privilege Vulnerability](https://github.com/dotnet/announcements/issues/xxx)
-  - [CVE-2025-21176 | .NET Remote Code Execution Vulnerability](https://github.com/dotnet/announcements/issues/xxx)
+  - [CVE-2025-21171 | .NET Remote Code Execution Vulnerability](https://github.com/dotnet/announcements/issues/340)
+  - [CVE-2025-21172 | .NET Remote Code Execution Vulnerability](https://github.com/dotnet/announcements/issues/339)
+  - [CVE-2025-21173 | .NET Elevation of Privilege Vulnerability](https://github.com/dotnet/announcements/issues/337)
+  - [CVE-2025-21176 | .NET Remote Code Execution Vulnerability](https://github.com/dotnet/announcements/issues/338)
 - 9.0.0 (November 2024)
   - [CVE-2024-43498 | .NET Remote Code Execution Vulnerability](https://github.com/dotnet/announcements/issues/334)
   - [CVE-2024-43499 | .NET Denial of Service Vulnerability](https://github.com/dotnet/announcements/issues/333)