Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/glibc@2.36-9%2Bdeb12u13
Typedeb
Namespacedebian
Nameglibc
Version2.36-9+deb12u13
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.40-5
Latest_non_vulnerable_version2.42-15
Affected_by_vulnerabilities
0
url VCID-3e43-r92j-hkd3
vulnerability_id VCID-3e43-r92j-hkd3
summary glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4437.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4437.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-4437
reference_id
reference_type
scores
0
value 0.00046
scoring_system epss
scoring_elements 0.14246
published_at 2026-04-11T12:55:00Z
1
value 0.00046
scoring_system epss
scoring_elements 0.143
published_at 2026-04-09T12:55:00Z
2
value 0.00046
scoring_system epss
scoring_elements 0.14208
published_at 2026-04-12T12:55:00Z
3
value 0.00046
scoring_system epss
scoring_elements 0.14151
published_at 2026-04-13T12:55:00Z
4
value 0.00046
scoring_system epss
scoring_elements 0.14042
published_at 2026-04-16T12:55:00Z
5
value 0.00046
scoring_system epss
scoring_elements 0.14041
published_at 2026-04-18T12:55:00Z
6
value 0.0005
scoring_system epss
scoring_elements 0.15514
published_at 2026-04-21T12:55:00Z
7
value 0.00052
scoring_system epss
scoring_elements 0.16579
published_at 2026-04-04T12:55:00Z
8
value 0.00052
scoring_system epss
scoring_elements 0.16517
published_at 2026-04-02T12:55:00Z
9
value 0.00052
scoring_system epss
scoring_elements 0.16379
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-4437
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4437
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4437
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131435
reference_id 1131435
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131435
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2449777
reference_id 2449777
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2449777
6
reference_url https://access.redhat.com/errata/RHSA-2026:7316
reference_id RHSA-2026:7316
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7316
7
reference_url https://sourceware.org/bugzilla/show_bug.cgi?id=34014
reference_id show_bug.cgi?id=34014
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-23T15:10:34Z/
url https://sourceware.org/bugzilla/show_bug.cgi?id=34014
fixed_packages
0
url pkg:deb/debian/glibc@2.40-5
purl pkg:deb/debian/glibc@2.40-5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.40-5
1
url pkg:deb/debian/glibc@2.42-10
purl pkg:deb/debian/glibc@2.42-10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-10
2
url pkg:deb/debian/glibc@2.42-14
purl pkg:deb/debian/glibc@2.42-14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-us68-psx5-zude
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-14
aliases CVE-2026-4437
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3e43-r92j-hkd3
1
url VCID-nwfb-xnks-1kg7
vulnerability_id VCID-nwfb-xnks-1kg7
summary glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4438.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4438.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-4438
reference_id
reference_type
scores
0
value 0.00026
scoring_system epss
scoring_elements 0.07331
published_at 2026-04-08T12:55:00Z
1
value 0.00026
scoring_system epss
scoring_elements 0.07359
published_at 2026-04-09T12:55:00Z
2
value 0.0003
scoring_system epss
scoring_elements 0.08485
published_at 2026-04-07T12:55:00Z
3
value 0.0003
scoring_system epss
scoring_elements 0.08511
published_at 2026-04-02T12:55:00Z
4
value 0.0003
scoring_system epss
scoring_elements 0.08566
published_at 2026-04-04T12:55:00Z
5
value 0.00031
scoring_system epss
scoring_elements 0.08753
published_at 2026-04-11T12:55:00Z
6
value 0.00031
scoring_system epss
scoring_elements 0.08731
published_at 2026-04-12T12:55:00Z
7
value 0.00031
scoring_system epss
scoring_elements 0.08716
published_at 2026-04-13T12:55:00Z
8
value 0.00031
scoring_system epss
scoring_elements 0.08605
published_at 2026-04-16T12:55:00Z
9
value 0.00031
scoring_system epss
scoring_elements 0.08593
published_at 2026-04-18T12:55:00Z
10
value 0.00033
scoring_system epss
scoring_elements 0.09727
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-4438
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4438
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4438
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131887
reference_id 1131887
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131887
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2449783
reference_id 2449783
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2449783
6
reference_url https://access.redhat.com/errata/RHSA-2026:7316
reference_id RHSA-2026:7316
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7316
7
reference_url https://sourceware.org/bugzilla/show_bug.cgi?id=34015
reference_id show_bug.cgi?id=34015
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-23T15:06:13Z/
url https://sourceware.org/bugzilla/show_bug.cgi?id=34015
fixed_packages
0
url pkg:deb/debian/glibc@2.40-5
purl pkg:deb/debian/glibc@2.40-5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.40-5
1
url pkg:deb/debian/glibc@2.42-10
purl pkg:deb/debian/glibc@2.42-10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-10
2
url pkg:deb/debian/glibc@2.42-14
purl pkg:deb/debian/glibc@2.42-14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-us68-psx5-zude
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-14
aliases CVE-2026-4438
risk_score 1.8
exploitability 0.5
weighted_severity 3.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nwfb-xnks-1kg7
2
url VCID-ssnc-wdcf-sfc9
vulnerability_id VCID-ssnc-wdcf-sfc9
summary glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15281.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15281.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-15281
reference_id
reference_type
scores
0
value 0.00069
scoring_system epss
scoring_elements 0.21392
published_at 2026-04-02T12:55:00Z
1
value 0.00069
scoring_system epss
scoring_elements 0.21233
published_at 2026-04-21T12:55:00Z
2
value 0.00069
scoring_system epss
scoring_elements 0.21253
published_at 2026-04-13T12:55:00Z
3
value 0.00069
scoring_system epss
scoring_elements 0.21246
published_at 2026-04-16T12:55:00Z
4
value 0.00069
scoring_system epss
scoring_elements 0.21256
published_at 2026-04-18T12:55:00Z
5
value 0.00069
scoring_system epss
scoring_elements 0.21446
published_at 2026-04-04T12:55:00Z
6
value 0.00069
scoring_system epss
scoring_elements 0.21197
published_at 2026-04-07T12:55:00Z
7
value 0.00069
scoring_system epss
scoring_elements 0.21277
published_at 2026-04-08T12:55:00Z
8
value 0.00069
scoring_system epss
scoring_elements 0.21339
published_at 2026-04-09T12:55:00Z
9
value 0.00069
scoring_system epss
scoring_elements 0.21349
published_at 2026-04-11T12:55:00Z
10
value 0.00069
scoring_system epss
scoring_elements 0.21307
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-15281
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15281
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126266
reference_id 1126266
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126266
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431196
reference_id 2431196
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431196
6
reference_url https://access.redhat.com/errata/RHSA-2026:2786
reference_id RHSA-2026:2786
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2786
7
reference_url https://access.redhat.com/errata/RHSA-2026:3228
reference_id RHSA-2026:3228
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3228
8
reference_url https://access.redhat.com/errata/RHSA-2026:4501
reference_id RHSA-2026:4501
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4501
9
reference_url https://access.redhat.com/errata/RHSA-2026:4655
reference_id RHSA-2026:4655
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4655
10
reference_url https://access.redhat.com/errata/RHSA-2026:4772
reference_id RHSA-2026:4772
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4772
11
reference_url https://access.redhat.com/errata/RHSA-2026:4943
reference_id RHSA-2026:4943
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4943
12
reference_url https://access.redhat.com/errata/RHSA-2026:5606
reference_id RHSA-2026:5606
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5606
13
reference_url https://access.redhat.com/errata/RHSA-2026:7316
reference_id RHSA-2026:7316
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7316
14
reference_url https://sourceware.org/bugzilla/show_bug.cgi?id=33814
reference_id show_bug.cgi?id=33814
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-22T19:21:34Z/
url https://sourceware.org/bugzilla/show_bug.cgi?id=33814
15
reference_url https://usn.ubuntu.com/8005-1/
reference_id USN-8005-1
reference_type
scores
url https://usn.ubuntu.com/8005-1/
fixed_packages
0
url pkg:deb/debian/glibc@2.40-5
purl pkg:deb/debian/glibc@2.40-5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.40-5
aliases CVE-2025-15281
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ssnc-wdcf-sfc9
3
url VCID-tcpv-4crc-zuap
vulnerability_id VCID-tcpv-4crc-zuap
summary glibc: glibc: Information disclosure via zero-valued network query
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0915.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0915.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-0915
reference_id
reference_type
scores
0
value 0.00021
scoring_system epss
scoring_elements 0.05581
published_at 2026-04-02T12:55:00Z
1
value 0.00021
scoring_system epss
scoring_elements 0.0576
published_at 2026-04-21T12:55:00Z
2
value 0.00021
scoring_system epss
scoring_elements 0.05638
published_at 2026-04-13T12:55:00Z
3
value 0.00021
scoring_system epss
scoring_elements 0.05592
published_at 2026-04-16T12:55:00Z
4
value 0.00021
scoring_system epss
scoring_elements 0.05605
published_at 2026-04-18T12:55:00Z
5
value 0.00021
scoring_system epss
scoring_elements 0.05618
published_at 2026-04-04T12:55:00Z
6
value 0.00021
scoring_system epss
scoring_elements 0.05616
published_at 2026-04-07T12:55:00Z
7
value 0.00021
scoring_system epss
scoring_elements 0.05655
published_at 2026-04-08T12:55:00Z
8
value 0.00021
scoring_system epss
scoring_elements 0.05681
published_at 2026-04-09T12:55:00Z
9
value 0.00021
scoring_system epss
scoring_elements 0.05653
published_at 2026-04-11T12:55:00Z
10
value 0.00021
scoring_system epss
scoring_elements 0.05645
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-0915
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0915
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0915
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125748
reference_id 1125748
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125748
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2430201
reference_id 2430201
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2430201
6
reference_url https://access.redhat.com/errata/RHSA-2026:1334
reference_id RHSA-2026:1334
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1334
7
reference_url https://access.redhat.com/errata/RHSA-2026:2786
reference_id RHSA-2026:2786
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2786
8
reference_url https://access.redhat.com/errata/RHSA-2026:3228
reference_id RHSA-2026:3228
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3228
9
reference_url https://access.redhat.com/errata/RHSA-2026:4501
reference_id RHSA-2026:4501
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4501
10
reference_url https://access.redhat.com/errata/RHSA-2026:4655
reference_id RHSA-2026:4655
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4655
11
reference_url https://access.redhat.com/errata/RHSA-2026:4772
reference_id RHSA-2026:4772
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4772
12
reference_url https://access.redhat.com/errata/RHSA-2026:4943
reference_id RHSA-2026:4943
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4943
13
reference_url https://access.redhat.com/errata/RHSA-2026:5606
reference_id RHSA-2026:5606
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5606
14
reference_url https://access.redhat.com/errata/RHSA-2026:7316
reference_id RHSA-2026:7316
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7316
15
reference_url https://sourceware.org/bugzilla/show_bug.cgi?id=33802
reference_id show_bug.cgi?id=33802
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-20T16:03:19Z/
url https://sourceware.org/bugzilla/show_bug.cgi?id=33802
16
reference_url https://usn.ubuntu.com/8005-1/
reference_id USN-8005-1
reference_type
scores
url https://usn.ubuntu.com/8005-1/
fixed_packages
0
url pkg:deb/debian/glibc@2.40-5
purl pkg:deb/debian/glibc@2.40-5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.40-5
aliases CVE-2026-0915
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tcpv-4crc-zuap
4
url VCID-us68-psx5-zude
vulnerability_id VCID-us68-psx5-zude
summary glibc: glibc: Denial of Service via iconv() function with specific character sets
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4046.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4046.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-4046
reference_id
reference_type
scores
0
value 0.0004
scoring_system epss
scoring_elements 0.12223
published_at 2026-04-02T12:55:00Z
1
value 0.0004
scoring_system epss
scoring_elements 0.12268
published_at 2026-04-04T12:55:00Z
2
value 0.00044
scoring_system epss
scoring_elements 0.13337
published_at 2026-04-21T12:55:00Z
3
value 0.00046
scoring_system epss
scoring_elements 0.143
published_at 2026-04-09T12:55:00Z
4
value 0.00046
scoring_system epss
scoring_elements 0.14246
published_at 2026-04-11T12:55:00Z
5
value 0.00046
scoring_system epss
scoring_elements 0.14041
published_at 2026-04-18T12:55:00Z
6
value 0.00046
scoring_system epss
scoring_elements 0.14042
published_at 2026-04-16T12:55:00Z
7
value 0.00046
scoring_system epss
scoring_elements 0.14151
published_at 2026-04-13T12:55:00Z
8
value 0.00046
scoring_system epss
scoring_elements 0.14208
published_at 2026-04-12T12:55:00Z
9
value 0.00052
scoring_system epss
scoring_elements 0.16379
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-4046
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4046
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4046
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132499
reference_id 1132499
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132499
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2453117
reference_id 2453117
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2453117
6
reference_url https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007;hb=HEAD
reference_id GLIBC-SA-2026-0007;hb=HEAD
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-30T17:33:59Z/
url https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007;hb=HEAD
7
reference_url https://sourceware.org/bugzilla/show_bug.cgi?id=33980
reference_id show_bug.cgi?id=33980
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-30T17:33:59Z/
url https://sourceware.org/bugzilla/show_bug.cgi?id=33980
8
reference_url https://inbox.sourceware.org/libc-announce/76814edf-cf7f-47ec-979d-2dce0a2c76bf@gotplt.org/T/#u
reference_id #u
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-30T17:33:59Z/
url https://inbox.sourceware.org/libc-announce/76814edf-cf7f-47ec-979d-2dce0a2c76bf@gotplt.org/T/#u
fixed_packages
0
url pkg:deb/debian/glibc@2.40-5
purl pkg:deb/debian/glibc@2.40-5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.40-5
1
url pkg:deb/debian/glibc@2.42-10
purl pkg:deb/debian/glibc@2.42-10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-10
2
url pkg:deb/debian/glibc@2.42-15
purl pkg:deb/debian/glibc@2.42-15
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-15
aliases CVE-2026-4046
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-us68-psx5-zude
5
url VCID-zn6t-3mvb-wufm
vulnerability_id VCID-zn6t-3mvb-wufm
summary glibc: Integer overflow in memalign leads to heap corruption
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0861.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0861.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-0861
reference_id
reference_type
scores
0
value 0.0001
scoring_system epss
scoring_elements 0.0115
published_at 2026-04-02T12:55:00Z
1
value 0.0001
scoring_system epss
scoring_elements 0.01226
published_at 2026-04-21T12:55:00Z
2
value 0.0001
scoring_system epss
scoring_elements 0.01173
published_at 2026-04-09T12:55:00Z
3
value 0.0001
scoring_system epss
scoring_elements 0.01159
published_at 2026-04-11T12:55:00Z
4
value 0.0001
scoring_system epss
scoring_elements 0.01152
published_at 2026-04-12T12:55:00Z
5
value 0.0001
scoring_system epss
scoring_elements 0.01156
published_at 2026-04-18T12:55:00Z
6
value 0.0001
scoring_system epss
scoring_elements 0.01144
published_at 2026-04-16T12:55:00Z
7
value 0.0001
scoring_system epss
scoring_elements 0.01157
published_at 2026-04-04T12:55:00Z
8
value 0.0001
scoring_system epss
scoring_elements 0.01166
published_at 2026-04-07T12:55:00Z
9
value 0.0001
scoring_system epss
scoring_elements 0.01172
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-0861
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0861
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0861
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125678
reference_id 1125678
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125678
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2429771
reference_id 2429771
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2429771
6
reference_url https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0001
reference_id GLIBC-SA-2026-0001
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-01-14T21:24:01Z/
url https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0001
7
reference_url https://access.redhat.com/errata/RHSA-2026:1334
reference_id RHSA-2026:1334
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1334
8
reference_url https://access.redhat.com/errata/RHSA-2026:2786
reference_id RHSA-2026:2786
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2786
9
reference_url https://access.redhat.com/errata/RHSA-2026:3228
reference_id RHSA-2026:3228
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3228
10
reference_url https://access.redhat.com/errata/RHSA-2026:4501
reference_id RHSA-2026:4501
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4501
11
reference_url https://access.redhat.com/errata/RHSA-2026:4655
reference_id RHSA-2026:4655
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4655
12
reference_url https://access.redhat.com/errata/RHSA-2026:4943
reference_id RHSA-2026:4943
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4943
13
reference_url https://access.redhat.com/errata/RHSA-2026:5606
reference_id RHSA-2026:5606
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5606
14
reference_url https://access.redhat.com/errata/RHSA-2026:7316
reference_id RHSA-2026:7316
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7316
15
reference_url https://sourceware.org/bugzilla/show_bug.cgi?id=33796
reference_id show_bug.cgi?id=33796
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-01-14T21:24:01Z/
url https://sourceware.org/bugzilla/show_bug.cgi?id=33796
16
reference_url https://usn.ubuntu.com/8005-1/
reference_id USN-8005-1
reference_type
scores
url https://usn.ubuntu.com/8005-1/
fixed_packages
0
url pkg:deb/debian/glibc@2.40-5
purl pkg:deb/debian/glibc@2.40-5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.40-5
aliases CVE-2026-0861
risk_score 3.6
exploitability 0.5
weighted_severity 7.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zn6t-3mvb-wufm
Fixing_vulnerabilities
Risk_score3.6
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-9%252Bdeb12u13