Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/libvncserver@0.9.11-17?arch=el8

Type rpm

Namespace redhat

Name libvncserver

Version 0.9.11-17

Qualifiers

arch	el8

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-7taj-t1kg-h3a9

vulnerability_id

VCID-7taj-t1kg-h3a9

summary

libvncserver: libvncserver/rfbserver.c has a divide by zero which could result in DoS

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25708.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25708.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25708

reference_id

reference_type

scores

value	0.0071
scoring_system	epss
scoring_elements	0.72252
published_at	2026-04-21T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72255
published_at	2026-04-16T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72265
published_at	2026-04-18T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.73708
published_at	2026-04-07T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.73743
published_at	2026-04-08T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.73756
published_at	2026-04-09T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.73778
published_at	2026-04-11T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.7376
published_at	2026-04-12T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.73751
published_at	2026-04-13T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.73703
published_at	2026-04-01T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.73713
published_at	2026-04-02T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.73736
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25708

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25708
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25708

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1896739
reference_id	1896739
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1896739

reference_url	https://access.redhat.com/errata/RHSA-2021:1811
reference_id	RHSA-2021:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1811

reference_url	https://usn.ubuntu.com/4636-1/
reference_id	USN-4636-1
reference_type
scores
url	https://usn.ubuntu.com/4636-1/

fixed_packages

aliases

CVE-2020-25708

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-7taj-t1kg-h3a9

url

VCID-h8bk-uaqv-puap

vulnerability_id

VCID-h8bk-uaqv-puap

summary

security update

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-21247.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-21247.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-21247

reference_id

reference_type

scores

value	0.01477
scoring_system	epss
scoring_elements	0.80914
published_at	2026-04-01T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.80923
published_at	2026-04-02T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.80945
published_at	2026-04-04T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.80942
published_at	2026-04-07T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.8097
published_at	2026-04-08T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.80977
published_at	2026-04-09T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.80994
published_at	2026-04-11T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.8098
published_at	2026-04-12T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.80972
published_at	2026-04-13T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.81009
published_at	2026-04-16T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.8101
published_at	2026-04-18T12:55:00Z

value	0.01477
scoring_system	epss
scoring_elements	0.81011
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-21247

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15126

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15127

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20019

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20020

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20021

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20022

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20023

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20024

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21247

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6307

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1849886
reference_id	1849886
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1849886

reference_url	https://access.redhat.com/errata/RHSA-2021:1811
reference_id	RHSA-2021:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1811

fixed_packages

aliases

CVE-2018-21247

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-h8bk-uaqv-puap

url

VCID-qfyp-1xhm-13au

vulnerability_id

VCID-qfyp-1xhm-13au

summary

libvncserver: libvncserver/rfbregion.c has a NULL pointer dereference

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14397.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14397.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14397

reference_id

reference_type

scores

value	0.04438
scoring_system	epss
scoring_elements	0.88996
published_at	2026-04-01T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.89004
published_at	2026-04-02T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.8902
published_at	2026-04-04T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.89022
published_at	2026-04-07T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.89039
published_at	2026-04-08T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.89045
published_at	2026-04-09T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.89057
published_at	2026-04-11T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.89052
published_at	2026-04-12T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.8905
published_at	2026-04-13T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.89064
published_at	2026-04-16T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.89063
published_at	2026-04-18T12:55:00Z

value	0.04438
scoring_system	epss
scoring_elements	0.89059
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14397

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14397
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14397

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1860344
reference_id	1860344
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1860344

reference_url	https://access.redhat.com/errata/RHSA-2021:1811
reference_id	RHSA-2021:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1811

reference_url	https://usn.ubuntu.com/4434-1/
reference_id	USN-4434-1
reference_type
scores
url	https://usn.ubuntu.com/4434-1/

reference_url	https://usn.ubuntu.com/4573-1/
reference_id	USN-4573-1
reference_type
scores
url	https://usn.ubuntu.com/4573-1/

fixed_packages

aliases

CVE-2020-14397

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-qfyp-1xhm-13au

url

VCID-sgkq-a36z-gyfp

vulnerability_id

VCID-sgkq-a36z-gyfp

summary

libvncserver: buffer overflow in ConnectClientToUnixSock()

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20839.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20839.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-20839

reference_id

reference_type

scores

value	0.04081
scoring_system	epss
scoring_elements	0.88505
published_at	2026-04-01T12:55:00Z

value	0.04081
scoring_system	epss
scoring_elements	0.88513
published_at	2026-04-02T12:55:00Z

value	0.04081
scoring_system	epss
scoring_elements	0.8853
published_at	2026-04-04T12:55:00Z

value	0.04081
scoring_system	epss
scoring_elements	0.88534
published_at	2026-04-07T12:55:00Z

value	0.04081
scoring_system	epss
scoring_elements	0.88553
published_at	2026-04-08T12:55:00Z

value	0.04081
scoring_system	epss
scoring_elements	0.88557
published_at	2026-04-09T12:55:00Z

value	0.04081
scoring_system	epss
scoring_elements	0.88569
published_at	2026-04-21T12:55:00Z

value	0.04081
scoring_system	epss
scoring_elements	0.88561
published_at	2026-04-13T12:55:00Z

value	0.04081
scoring_system	epss
scoring_elements	0.88575
published_at	2026-04-16T12:55:00Z

value	0.04081
scoring_system	epss
scoring_elements	0.88571
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-20839

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20839
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20839

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1849877
reference_id	1849877
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1849877

reference_url	https://access.redhat.com/errata/RHSA-2021:1811
reference_id	RHSA-2021:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1811

reference_url	https://usn.ubuntu.com/4434-1/
reference_id	USN-4434-1
reference_type
scores
url	https://usn.ubuntu.com/4434-1/

fixed_packages

aliases

CVE-2019-20839

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-sgkq-a36z-gyfp

url

VCID-wzpf-4nu7-xyc6

vulnerability_id

VCID-wzpf-4nu7-xyc6

summary

libvncserver: libvncclient/rfbproto.c does not limit TextChat size

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14405.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14405.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14405

reference_id

reference_type

scores

value	0.01448
scoring_system	epss
scoring_elements	0.80698
published_at	2026-04-01T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80708
published_at	2026-04-02T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80729
published_at	2026-04-04T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80725
published_at	2026-04-07T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80753
published_at	2026-04-08T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80761
published_at	2026-04-09T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80778
published_at	2026-04-11T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80762
published_at	2026-04-12T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80754
published_at	2026-04-13T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80791
published_at	2026-04-16T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80792
published_at	2026-04-18T12:55:00Z

value	0.01448
scoring_system	epss
scoring_elements	0.80793
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14405

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14405
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14405

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1860325
reference_id	1860325
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1860325

reference_url	https://access.redhat.com/errata/RHSA-2021:1811
reference_id	RHSA-2021:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1811

reference_url	https://usn.ubuntu.com/4434-1/
reference_id	USN-4434-1
reference_type
scores
url	https://usn.ubuntu.com/4434-1/

fixed_packages

aliases

CVE-2020-14405

risk_score

3.0

exploitability

0.5

weighted_severity

5.9

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-wzpf-4nu7-xyc6

Fixing_vulnerabilities

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libvncserver@0.9.11-17%3Farch=el8

Package Instance