Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
Typedeb
Namespacedebian
Namecyrus-sasl2
Version2.1.28+dfsg1-11
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2hdg-fauv-7bhv
vulnerability_id VCID-2hdg-fauv-7bhv
summary 
A NULL pointer dereference in Cyrus-SASL may allow remote attackers
    to cause a Denial of Service condition.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4122.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4122.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-4122
reference_id
reference_type
scores
0
value 0.01179
scoring_system epss
scoring_elements 0.7876
published_at 2026-04-21T12:55:00Z
1
value 0.01179
scoring_system epss
scoring_elements 0.78687
published_at 2026-04-01T12:55:00Z
2
value 0.01179
scoring_system epss
scoring_elements 0.78694
published_at 2026-04-02T12:55:00Z
3
value 0.01179
scoring_system epss
scoring_elements 0.78725
published_at 2026-04-04T12:55:00Z
4
value 0.01179
scoring_system epss
scoring_elements 0.78707
published_at 2026-04-07T12:55:00Z
5
value 0.01179
scoring_system epss
scoring_elements 0.78732
published_at 2026-04-08T12:55:00Z
6
value 0.01179
scoring_system epss
scoring_elements 0.78739
published_at 2026-04-09T12:55:00Z
7
value 0.01179
scoring_system epss
scoring_elements 0.78763
published_at 2026-04-18T12:55:00Z
8
value 0.01179
scoring_system epss
scoring_elements 0.78746
published_at 2026-04-12T12:55:00Z
9
value 0.01179
scoring_system epss
scoring_elements 0.78737
published_at 2026-04-13T12:55:00Z
10
value 0.01179
scoring_system epss
scoring_elements 0.78765
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-4122
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4122
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4122
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:C
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=716835
reference_id 716835
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=716835
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=984669
reference_id 984669
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=984669
6
reference_url https://security.gentoo.org/glsa/201309-01
reference_id GLSA-201309-01
reference_type
scores
url https://security.gentoo.org/glsa/201309-01
7
reference_url https://usn.ubuntu.com/1988-1/
reference_id USN-1988-1
reference_type
scores
url https://usn.ubuntu.com/1988-1/
8
reference_url https://usn.ubuntu.com/2755-1/
reference_id USN-2755-1
reference_type
scores
url https://usn.ubuntu.com/2755-1/
fixed_packages
0
url pkg:deb/debian/cyrus-sasl2@2.1.26.dfsg1-14?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.26.dfsg1-14?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.26.dfsg1-14%3Fdistro=trixie
1
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-10%3Fdistro=trixie
3
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-9%3Fdistro=trixie
4
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-10%3Fdistro=trixie
5
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie
aliases CVE-2013-4122
risk_score 2.1
exploitability 0.5
weighted_severity 4.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2hdg-fauv-7bhv
1
url VCID-ca3b-g7k5-yucm
vulnerability_id VCID-ca3b-g7k5-yucm
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19906.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19906.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-19906
reference_id
reference_type
scores
0
value 0.00354
scoring_system epss
scoring_elements 0.5769
published_at 2026-04-01T12:55:00Z
1
value 0.00354
scoring_system epss
scoring_elements 0.57774
published_at 2026-04-02T12:55:00Z
2
value 0.00354
scoring_system epss
scoring_elements 0.57793
published_at 2026-04-04T12:55:00Z
3
value 0.00354
scoring_system epss
scoring_elements 0.57767
published_at 2026-04-07T12:55:00Z
4
value 0.00354
scoring_system epss
scoring_elements 0.57822
published_at 2026-04-08T12:55:00Z
5
value 0.00354
scoring_system epss
scoring_elements 0.57824
published_at 2026-04-09T12:55:00Z
6
value 0.00354
scoring_system epss
scoring_elements 0.57827
published_at 2026-04-16T12:55:00Z
7
value 0.00354
scoring_system epss
scoring_elements 0.57825
published_at 2026-04-18T12:55:00Z
8
value 0.00354
scoring_system epss
scoring_elements 0.57841
published_at 2026-04-11T12:55:00Z
9
value 0.00354
scoring_system epss
scoring_elements 0.57819
published_at 2026-04-12T12:55:00Z
10
value 0.00354
scoring_system epss
scoring_elements 0.57798
published_at 2026-04-13T12:55:00Z
11
value 0.00481
scoring_system epss
scoring_elements 0.65159
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-19906
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19906
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19906
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1791854
reference_id 1791854
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1791854
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947043
reference_id 947043
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947043
6
reference_url https://access.redhat.com/errata/RHSA-2020:4497
reference_id RHSA-2020:4497
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4497
7
reference_url https://usn.ubuntu.com/4256-1/
reference_id USN-4256-1
reference_type
scores
url https://usn.ubuntu.com/4256-1/
fixed_packages
0
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2%3Fdistro=trixie
1
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-10%3Fdistro=trixie
3
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-9%3Fdistro=trixie
4
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-10%3Fdistro=trixie
5
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie
aliases CVE-2019-19906
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ca3b-g7k5-yucm
2
url VCID-fthp-w8mb-nkgr
vulnerability_id VCID-fthp-w8mb-nkgr
summary 
A buffer overflow in Cyrus-SASL might allow for the execution of arbitrary
    code in applications or daemons that authenticate using SASL.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0688.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0688.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-0688
reference_id
reference_type
scores
0
value 0.39477
scoring_system epss
scoring_elements 0.97277
published_at 2026-04-01T12:55:00Z
1
value 0.39477
scoring_system epss
scoring_elements 0.97282
published_at 2026-04-02T12:55:00Z
2
value 0.39477
scoring_system epss
scoring_elements 0.97287
published_at 2026-04-07T12:55:00Z
3
value 0.39477
scoring_system epss
scoring_elements 0.97294
published_at 2026-04-08T12:55:00Z
4
value 0.39477
scoring_system epss
scoring_elements 0.97295
published_at 2026-04-09T12:55:00Z
5
value 0.39477
scoring_system epss
scoring_elements 0.97298
published_at 2026-04-11T12:55:00Z
6
value 0.39477
scoring_system epss
scoring_elements 0.97299
published_at 2026-04-13T12:55:00Z
7
value 0.39477
scoring_system epss
scoring_elements 0.97307
published_at 2026-04-16T12:55:00Z
8
value 0.39477
scoring_system epss
scoring_elements 0.9731
published_at 2026-04-18T12:55:00Z
9
value 0.39477
scoring_system epss
scoring_elements 0.97312
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-0688
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0688
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0688
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=487251
reference_id 487251
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=487251
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=528749
reference_id 528749
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=528749
5
reference_url https://security.gentoo.org/glsa/200907-09
reference_id GLSA-200907-09
reference_type
scores
url https://security.gentoo.org/glsa/200907-09
6
reference_url https://access.redhat.com/errata/RHSA-2009:1116
reference_id RHSA-2009:1116
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1116
7
reference_url https://usn.ubuntu.com/790-1/
reference_id USN-790-1
reference_type
scores
url https://usn.ubuntu.com/790-1/
fixed_packages
0
url pkg:deb/debian/cyrus-sasl2@2.1.23.dfsg1-1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.23.dfsg1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.23.dfsg1-1%3Fdistro=trixie
1
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-10%3Fdistro=trixie
3
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-9%3Fdistro=trixie
4
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-10%3Fdistro=trixie
5
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie
aliases CVE-2009-0688
risk_score 0.2
exploitability 0.5
weighted_severity 0.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fthp-w8mb-nkgr
3
url VCID-j6r3-e2er-1ffx
vulnerability_id VCID-j6r3-e2er-1ffx
summary security flaw
references
0
reference_url http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=134657
reference_id
reference_type
scores
url http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=134657
1
reference_url http://lists.apple.com/archives/security-announce/2005/Mar/msg00000.html
reference_id
reference_type
scores
url http://lists.apple.com/archives/security-announce/2005/Mar/msg00000.html
2
reference_url http://marc.info/?l=bugtraq&m=110693126007214&w=2
reference_id
reference_type
scores
url http://marc.info/?l=bugtraq&m=110693126007214&w=2
3
reference_url http://rhn.redhat.com/errata/RHSA-2004-546.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2004-546.html
4
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0884.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0884.json
5
reference_url https://api.first.org/data/v1/epss?cve=CVE-2004-0884
reference_id
reference_type
scores
0
value 0.0006
scoring_system epss
scoring_elements 0.186
published_at 2026-04-21T12:55:00Z
1
value 0.0006
scoring_system epss
scoring_elements 0.18672
published_at 2026-04-01T12:55:00Z
2
value 0.0006
scoring_system epss
scoring_elements 0.1881
published_at 2026-04-02T12:55:00Z
3
value 0.0006
scoring_system epss
scoring_elements 0.18863
published_at 2026-04-04T12:55:00Z
4
value 0.0006
scoring_system epss
scoring_elements 0.18585
published_at 2026-04-07T12:55:00Z
5
value 0.0006
scoring_system epss
scoring_elements 0.18664
published_at 2026-04-08T12:55:00Z
6
value 0.0006
scoring_system epss
scoring_elements 0.18719
published_at 2026-04-09T12:55:00Z
7
value 0.0006
scoring_system epss
scoring_elements 0.18724
published_at 2026-04-11T12:55:00Z
8
value 0.0006
scoring_system epss
scoring_elements 0.18677
published_at 2026-04-12T12:55:00Z
9
value 0.0006
scoring_system epss
scoring_elements 0.18626
published_at 2026-04-13T12:55:00Z
10
value 0.0006
scoring_system epss
scoring_elements 0.18571
published_at 2026-04-16T12:55:00Z
11
value 0.0006
scoring_system epss
scoring_elements 0.1858
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2004-0884
6
reference_url https://bugzilla.fedora.us/show_bug.cgi?id=2137
reference_id
reference_type
scores
url https://bugzilla.fedora.us/show_bug.cgi?id=2137
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0884
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0884
8
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/17643
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/17643
9
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11678
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11678
10
reference_url http://www.ciac.org/ciac/bulletins/p-003.shtml
reference_id
reference_type
scores
url http://www.ciac.org/ciac/bulletins/p-003.shtml
11
reference_url http://www.debian.org/security/2004/dsa-563
reference_id
reference_type
scores
url http://www.debian.org/security/2004/dsa-563
12
reference_url http://www.debian.org/security/2004/dsa-568
reference_id
reference_type
scores
url http://www.debian.org/security/2004/dsa-568
13
reference_url http://www.gentoo.org/security/en/glsa/glsa-200410-05.xml
reference_id
reference_type
scores
url http://www.gentoo.org/security/en/glsa/glsa-200410-05.xml
14
reference_url http://www.mandriva.com/security/advisories?name=MDKSA-2004:106
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDKSA-2004:106
15
reference_url http://www.securityfocus.com/bid/11347
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/11347
16
reference_url http://www.trustix.net/errata/2004/0053/
reference_id
reference_type
scores
url http://www.trustix.net/errata/2004/0053/
17
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1617313
reference_id 1617313
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1617313
18
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=275431
reference_id 275431
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=275431
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:1.5.24:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:1.5.24:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:1.5.24:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:1.5.27:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:1.5.27:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:1.5.27:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:1.5.28:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:1.5.28:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:1.5.28:*:*:*:*:*:*:*
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.10:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.10:*:*:*:*:*:*:*
23
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.11:*:*:*:*:*:*:*
24
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.12:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.12:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.12:*:*:*:*:*:*:*
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.13:*:*:*:*:*:*:*
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.14:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.14:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.14:*:*:*:*:*:*:*
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.15:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.15:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.15:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.16:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.16:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.16:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.17:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.17:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.17:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.18:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.18:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.18:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.18_r1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.18_r1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.18_r1:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.9:*:*:*:*:*:*:*
reference_id cpe:2.3:a:cyrus:sasl:2.1.9:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:cyrus:sasl:2.1.9:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:conectiva:linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:conectiva:linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:conectiva:linux:9.0:*:*:*:*:*:*:*
35
reference_url https://nvd.nist.gov/vuln/detail/CVE-2004-0884
reference_id CVE-2004-0884
reference_type
scores
0
value 7.2
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:C/I:C/A:C
url https://nvd.nist.gov/vuln/detail/CVE-2004-0884
36
reference_url https://access.redhat.com/errata/RHSA-2004:546
reference_id RHSA-2004:546
reference_type
scores
url https://access.redhat.com/errata/RHSA-2004:546
fixed_packages
0
url pkg:deb/debian/cyrus-sasl2@2.1.19-1.3?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.19-1.3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.19-1.3%3Fdistro=trixie
1
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-10%3Fdistro=trixie
3
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-9%3Fdistro=trixie
4
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-10%3Fdistro=trixie
5
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie
aliases CVE-2004-0884
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j6r3-e2er-1ffx
4
url VCID-k6kq-a26r-qffd
vulnerability_id VCID-k6kq-a26r-qffd
summary A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-8032
reference_id
reference_type
scores
0
value 0.00132
scoring_system epss
scoring_elements 0.32744
published_at 2026-04-21T12:55:00Z
1
value 0.00132
scoring_system epss
scoring_elements 0.32759
published_at 2026-04-01T12:55:00Z
2
value 0.00132
scoring_system epss
scoring_elements 0.32889
published_at 2026-04-02T12:55:00Z
3
value 0.00132
scoring_system epss
scoring_elements 0.32924
published_at 2026-04-04T12:55:00Z
4
value 0.00132
scoring_system epss
scoring_elements 0.32746
published_at 2026-04-07T12:55:00Z
5
value 0.00132
scoring_system epss
scoring_elements 0.32794
published_at 2026-04-08T12:55:00Z
6
value 0.00132
scoring_system epss
scoring_elements 0.3282
published_at 2026-04-09T12:55:00Z
7
value 0.00132
scoring_system epss
scoring_elements 0.32822
published_at 2026-04-11T12:55:00Z
8
value 0.00132
scoring_system epss
scoring_elements 0.32784
published_at 2026-04-12T12:55:00Z
9
value 0.00132
scoring_system epss
scoring_elements 0.32758
published_at 2026-04-13T12:55:00Z
10
value 0.00132
scoring_system epss
scoring_elements 0.328
published_at 2026-04-16T12:55:00Z
11
value 0.00132
scoring_system epss
scoring_elements 0.32775
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-8032
1
reference_url https://bugzilla.suse.com/show_bug.cgi?id=1180669
reference_id
reference_type
scores
url https://bugzilla.suse.com/show_bug.cgi?id=1180669
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-8032
reference_id CVE-2020-8032
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2020-8032
fixed_packages
0
url pkg:deb/debian/cyrus-sasl2@0?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@0%3Fdistro=trixie
1
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-10%3Fdistro=trixie
3
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-9%3Fdistro=trixie
4
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-10%3Fdistro=trixie
5
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie
aliases CVE-2020-8032
risk_score 2.1
exploitability 0.5
weighted_severity 4.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k6kq-a26r-qffd
5
url VCID-ukce-7qpu-c7cm
vulnerability_id VCID-ukce-7qpu-c7cm
summary 
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24407.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24407.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-24407
reference_id
reference_type
scores
0
value 0.00431
scoring_system epss
scoring_elements 0.62612
published_at 2026-04-21T12:55:00Z
1
value 0.00431
scoring_system epss
scoring_elements 0.62616
published_at 2026-04-11T12:55:00Z
2
value 0.00431
scoring_system epss
scoring_elements 0.62605
published_at 2026-04-12T12:55:00Z
3
value 0.00431
scoring_system epss
scoring_elements 0.62582
published_at 2026-04-13T12:55:00Z
4
value 0.00431
scoring_system epss
scoring_elements 0.62623
published_at 2026-04-16T12:55:00Z
5
value 0.00431
scoring_system epss
scoring_elements 0.6263
published_at 2026-04-18T12:55:00Z
6
value 0.00528
scoring_system epss
scoring_elements 0.67134
published_at 2026-04-02T12:55:00Z
7
value 0.00528
scoring_system epss
scoring_elements 0.67157
published_at 2026-04-04T12:55:00Z
8
value 0.00528
scoring_system epss
scoring_elements 0.67132
published_at 2026-04-07T12:55:00Z
9
value 0.00528
scoring_system epss
scoring_elements 0.67182
published_at 2026-04-08T12:55:00Z
10
value 0.00528
scoring_system epss
scoring_elements 0.67195
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-24407
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24407
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24407
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/cyrusimap/cyrus-sasl/blob/fdcd13ceaef8de684dc69008011fa865c5b4a3ac/docsrc/sasl/release-notes/2.1/index.rst
reference_id
reference_type
scores
url https://github.com/cyrusimap/cyrus-sasl/blob/fdcd13ceaef8de684dc69008011fa865c5b4a3ac/docsrc/sasl/release-notes/2.1/index.rst
5
reference_url https://www.cyrusimap.org/sasl/sasl/release-notes/2.1/index.html#new-in-2-1-28
reference_id
reference_type
scores
url https://www.cyrusimap.org/sasl/sasl/release-notes/2.1/index.html#new-in-2-1-28
6
reference_url https://www.debian.org/security/2022/dsa-5087
reference_id
reference_type
scores
url https://www.debian.org/security/2022/dsa-5087
7
reference_url http://www.openwall.com/lists/oss-security/2022/02/23/4
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2022/02/23/4
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2055326
reference_id 2055326
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2055326
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-24407
reference_id CVE-2022-24407
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-24407
10
reference_url https://access.redhat.com/errata/RHSA-2022:0658
reference_id RHSA-2022:0658
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0658
11
reference_url https://access.redhat.com/errata/RHSA-2022:0666
reference_id RHSA-2022:0666
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0666
12
reference_url https://access.redhat.com/errata/RHSA-2022:0668
reference_id RHSA-2022:0668
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0668
13
reference_url https://access.redhat.com/errata/RHSA-2022:0730
reference_id RHSA-2022:0730
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0730
14
reference_url https://access.redhat.com/errata/RHSA-2022:0731
reference_id RHSA-2022:0731
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0731
15
reference_url https://access.redhat.com/errata/RHSA-2022:0780
reference_id RHSA-2022:0780
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0780
16
reference_url https://access.redhat.com/errata/RHSA-2022:0841
reference_id RHSA-2022:0841
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0841
17
reference_url https://access.redhat.com/errata/RHSA-2022:1029
reference_id RHSA-2022:1029
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:1029
18
reference_url https://access.redhat.com/errata/RHSA-2022:1263
reference_id RHSA-2022:1263
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:1263
19
reference_url https://usn.ubuntu.com/5301-1/
reference_id USN-5301-1
reference_type
scores
url https://usn.ubuntu.com/5301-1/
20
reference_url https://usn.ubuntu.com/5301-2/
reference_id USN-5301-2
reference_type
scores
url https://usn.ubuntu.com/5301-2/
fixed_packages
0
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2.1%252Bdeb11u1%3Fdistro=trixie
1
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-2%3Fdistro=trixie
2
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-10%3Fdistro=trixie
3
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-9%3Fdistro=trixie
4
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-10%3Fdistro=trixie
5
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie
aliases CVE-2022-24407
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ukce-7qpu-c7cm
6
url VCID-wz6n-pfcc-3kfk
vulnerability_id VCID-wz6n-pfcc-3kfk
summary 
Cyrus-SASL contains two vulnerabilities that might allow an attacker to
    completely compromise the vulnerable system.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0373.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0373.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2005-0373
reference_id
reference_type
scores
0
value 0.04758
scoring_system epss
scoring_elements 0.89409
published_at 2026-04-01T12:55:00Z
1
value 0.04758
scoring_system epss
scoring_elements 0.89413
published_at 2026-04-02T12:55:00Z
2
value 0.04758
scoring_system epss
scoring_elements 0.89423
published_at 2026-04-04T12:55:00Z
3
value 0.04758
scoring_system epss
scoring_elements 0.89425
published_at 2026-04-07T12:55:00Z
4
value 0.04758
scoring_system epss
scoring_elements 0.89441
published_at 2026-04-08T12:55:00Z
5
value 0.04758
scoring_system epss
scoring_elements 0.89445
published_at 2026-04-09T12:55:00Z
6
value 0.04758
scoring_system epss
scoring_elements 0.89453
published_at 2026-04-11T12:55:00Z
7
value 0.04758
scoring_system epss
scoring_elements 0.89452
published_at 2026-04-12T12:55:00Z
8
value 0.04758
scoring_system epss
scoring_elements 0.89447
published_at 2026-04-13T12:55:00Z
9
value 0.04758
scoring_system epss
scoring_elements 0.89462
published_at 2026-04-16T12:55:00Z
10
value 0.04758
scoring_system epss
scoring_elements 0.89463
published_at 2026-04-18T12:55:00Z
11
value 0.04758
scoring_system epss
scoring_elements 0.8946
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2005-0373
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0373
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0373
3
reference_url https://security.gentoo.org/glsa/200410-05
reference_id GLSA-200410-05
reference_type
scores
url https://security.gentoo.org/glsa/200410-05
fixed_packages
0
url pkg:deb/debian/cyrus-sasl2@2.1.19.dfsg1-0sarge2?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.19.dfsg1-0sarge2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.19.dfsg1-0sarge2%3Fdistro=trixie
1
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-10%3Fdistro=trixie
3
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-9%3Fdistro=trixie
4
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-10%3Fdistro=trixie
5
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie
aliases CVE-2005-0373
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wz6n-pfcc-3kfk
7
url VCID-yhzp-e1zf-nfh6
vulnerability_id VCID-yhzp-e1zf-nfh6
summary security flaw
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1347.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1347.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2002-1347
reference_id
reference_type
scores
0
value 0.09976
scoring_system epss
scoring_elements 0.93015
published_at 2026-04-01T12:55:00Z
1
value 0.09976
scoring_system epss
scoring_elements 0.93024
published_at 2026-04-02T12:55:00Z
2
value 0.09976
scoring_system epss
scoring_elements 0.93028
published_at 2026-04-04T12:55:00Z
3
value 0.09976
scoring_system epss
scoring_elements 0.93027
published_at 2026-04-07T12:55:00Z
4
value 0.09976
scoring_system epss
scoring_elements 0.93035
published_at 2026-04-08T12:55:00Z
5
value 0.09976
scoring_system epss
scoring_elements 0.93039
published_at 2026-04-09T12:55:00Z
6
value 0.09976
scoring_system epss
scoring_elements 0.93044
published_at 2026-04-11T12:55:00Z
7
value 0.09976
scoring_system epss
scoring_elements 0.93042
published_at 2026-04-12T12:55:00Z
8
value 0.09976
scoring_system epss
scoring_elements 0.93043
published_at 2026-04-13T12:55:00Z
9
value 0.09976
scoring_system epss
scoring_elements 0.93054
published_at 2026-04-16T12:55:00Z
10
value 0.09976
scoring_system epss
scoring_elements 0.93057
published_at 2026-04-18T12:55:00Z
11
value 0.09976
scoring_system epss
scoring_elements 0.93064
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2002-1347
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1347
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1347
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1616880
reference_id 1616880
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1616880
4
reference_url https://access.redhat.com/errata/RHSA-2002:283
reference_id RHSA-2002:283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2002:283
fixed_packages
0
url pkg:deb/debian/cyrus-sasl2@2.1.10-1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.10-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.10-1%3Fdistro=trixie
1
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-10%3Fdistro=trixie
3
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-9%3Fdistro=trixie
4
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-10%3Fdistro=trixie
5
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie
aliases CVE-2002-1347
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yhzp-e1zf-nfh6
8
url VCID-ymyx-w5ve-gkgh
vulnerability_id VCID-ymyx-w5ve-gkgh
summary 
Cyrus-SASL contains a vulnerability in the DIGEST-MD5 process that could
    lead to a Denial of Service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1721.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1721.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2006-1721
reference_id
reference_type
scores
0
value 0.03614
scoring_system epss
scoring_elements 0.87734
published_at 2026-04-01T12:55:00Z
1
value 0.03614
scoring_system epss
scoring_elements 0.87745
published_at 2026-04-02T12:55:00Z
2
value 0.03614
scoring_system epss
scoring_elements 0.87758
published_at 2026-04-04T12:55:00Z
3
value 0.03614
scoring_system epss
scoring_elements 0.87761
published_at 2026-04-07T12:55:00Z
4
value 0.03614
scoring_system epss
scoring_elements 0.87782
published_at 2026-04-08T12:55:00Z
5
value 0.03614
scoring_system epss
scoring_elements 0.87788
published_at 2026-04-09T12:55:00Z
6
value 0.03614
scoring_system epss
scoring_elements 0.87799
published_at 2026-04-11T12:55:00Z
7
value 0.03614
scoring_system epss
scoring_elements 0.87794
published_at 2026-04-12T12:55:00Z
8
value 0.03614
scoring_system epss
scoring_elements 0.87793
published_at 2026-04-13T12:55:00Z
9
value 0.03614
scoring_system epss
scoring_elements 0.87807
published_at 2026-04-16T12:55:00Z
10
value 0.03614
scoring_system epss
scoring_elements 0.87806
published_at 2026-04-18T12:55:00Z
11
value 0.03614
scoring_system epss
scoring_elements 0.87803
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2006-1721
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1721
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1721
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=189814
reference_id 189814
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=189814
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=361937
reference_id 361937
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=361937
5
reference_url https://security.gentoo.org/glsa/200604-09
reference_id GLSA-200604-09
reference_type
scores
url https://security.gentoo.org/glsa/200604-09
6
reference_url https://access.redhat.com/errata/RHSA-2007:0795
reference_id RHSA-2007:0795
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0795
7
reference_url https://access.redhat.com/errata/RHSA-2007:0878
reference_id RHSA-2007:0878
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0878
8
reference_url https://usn.ubuntu.com/272-1/
reference_id USN-272-1
reference_type
scores
url https://usn.ubuntu.com/272-1/
fixed_packages
0
url pkg:deb/debian/cyrus-sasl2@2.1.19.dfsg1-0.2?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.19.dfsg1-0.2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.19.dfsg1-0.2%3Fdistro=trixie
1
url pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.27%2Bdfsg-2.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.27%252Bdfsg-2.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg-10%3Fdistro=trixie
3
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-9%3Fdistro=trixie
4
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-10%3Fdistro=trixie
5
url pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
purl pkg:deb/debian/cyrus-sasl2@2.1.28%2Bdfsg1-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie
aliases CVE-2006-1721
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ymyx-w5ve-gkgh
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/cyrus-sasl2@2.1.28%252Bdfsg1-11%3Fdistro=trixie