Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1

Type deb

Namespace debian

Name libraw

Version 0.20.2-2.1+deb12u1

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-33xw-gu7q-3uht

vulnerability_id VCID-33xw-gu7q-3uht

summary LibRaw: Improper Validation of Specified Quantity in Input in LibRaw

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43964.json

reference_id

reference_type

scores

value	2.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43964.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-43964

reference_id

reference_type

scores

value	0.00229
scoring_system	epss
scoring_elements	0.45617
published_at	2026-04-02T12:55:00Z

value	0.00229
scoring_system	epss
scoring_elements	0.45634
published_at	2026-04-21T12:55:00Z

value	0.00229
scoring_system	epss
scoring_elements	0.45584
published_at	2026-04-07T12:55:00Z

value	0.00229
scoring_system	epss
scoring_elements	0.45639
published_at	2026-04-13T12:55:00Z

value	0.00229
scoring_system	epss
scoring_elements	0.45638
published_at	2026-04-09T12:55:00Z

value	0.00229
scoring_system	epss
scoring_elements	0.4566
published_at	2026-04-11T12:55:00Z

value	0.00229
scoring_system	epss
scoring_elements	0.45631
published_at	2026-04-12T12:55:00Z

value	0.00229
scoring_system	epss
scoring_elements	0.45689
published_at	2026-04-16T12:55:00Z

value	0.00229
scoring_system	epss
scoring_elements	0.45684
published_at	2026-04-18T12:55:00Z

value	0.00229
scoring_system	epss
scoring_elements	0.45637
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-43964

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43964
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43964

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/LibRaw/LibRaw/compare/0.21.3...0.21.4

reference_id

0.21.3...0.21.4

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:12:15Z/

url

https://github.com/LibRaw/LibRaw/compare/0.21.3...0.21.4

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103783
reference_id	1103783
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103783

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2361287
reference_id	2361287
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2361287

reference_url

https://github.com/LibRaw/LibRaw/commit/a50dc3f1127d2e37a9b39f57ad9bb2ebb60f18c0

reference_id

a50dc3f1127d2e37a9b39f57ad9bb2ebb60f18c0

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:12:15Z/

url

https://github.com/LibRaw/LibRaw/commit/a50dc3f1127d2e37a9b39f57ad9bb2ebb60f18c0

reference_url

https://www.libraw.org/news/libraw-0-21-4-release

reference_id

libraw-0-21-4-release

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:12:15Z/

url

https://www.libraw.org/news/libraw-0-21-4-release

reference_url	https://usn.ubuntu.com/7485-1/
reference_id	USN-7485-1
reference_type
scores
url	https://usn.ubuntu.com/7485-1/

fixed_packages

url	pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1
purl	pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.20.2-2.1%252Bdeb12u1

aliases CVE-2025-43964

risk_score 1.3

exploitability 0.5

weighted_severity 2.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-33xw-gu7q-3uht

url VCID-88vk-c7wu-fffr

vulnerability_id VCID-88vk-c7wu-fffr

summary LibRaw: Out-of-Bounds Read in LibRaw's phase_one_correct Function

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43962.json

reference_id

reference_type

scores

value	2.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43962.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-43962

reference_id

reference_type

scores

value	0.0031
scoring_system	epss
scoring_elements	0.54155
published_at	2026-04-02T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54243
published_at	2026-04-21T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.5416
published_at	2026-04-07T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54212
published_at	2026-04-08T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54208
published_at	2026-04-09T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54258
published_at	2026-04-16T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.5424
published_at	2026-04-12T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54219
published_at	2026-04-13T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54262
published_at	2026-04-18T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54185
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-43962

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43962
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43962

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/LibRaw/LibRaw/compare/0.21.3...0.21.4

reference_id

0.21.3...0.21.4

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:14:16Z/

url

https://github.com/LibRaw/LibRaw/compare/0.21.3...0.21.4

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103781
reference_id	1103781
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103781

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2361286
reference_id	2361286
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2361286

reference_url

https://github.com/LibRaw/LibRaw/commit/66fe663e02a4dd610b4e832f5d9af326709336c2

reference_id

66fe663e02a4dd610b4e832f5d9af326709336c2

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:14:16Z/

url

https://github.com/LibRaw/LibRaw/commit/66fe663e02a4dd610b4e832f5d9af326709336c2

reference_url

https://www.libraw.org/news/libraw-0-21-4-release

reference_id

libraw-0-21-4-release

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:14:16Z/

url

https://www.libraw.org/news/libraw-0-21-4-release

reference_url	https://usn.ubuntu.com/7485-1/
reference_id	USN-7485-1
reference_type
scores
url	https://usn.ubuntu.com/7485-1/

fixed_packages

url	pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1
purl	pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.20.2-2.1%252Bdeb12u1

aliases CVE-2025-43962

risk_score 1.3

exploitability 0.5

weighted_severity 2.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-88vk-c7wu-fffr

url VCID-fbf4-mwnn-vqdp

vulnerability_id VCID-fbf4-mwnn-vqdp

summary LibRaw: out-of-buffer access

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43963.json

reference_id

reference_type

scores

value	2.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43963.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-43963

reference_id

reference_type

scores

value	0.0031
scoring_system	epss
scoring_elements	0.54155
published_at	2026-04-02T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54243
published_at	2026-04-21T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.5416
published_at	2026-04-07T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54212
published_at	2026-04-08T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54208
published_at	2026-04-09T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54258
published_at	2026-04-16T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.5424
published_at	2026-04-12T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54219
published_at	2026-04-13T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54262
published_at	2026-04-18T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54185
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-43963

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43963
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43963

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/LibRaw/LibRaw/compare/0.21.3...0.21.4

reference_id

0.21.3...0.21.4

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:13:31Z/

url

https://github.com/LibRaw/LibRaw/compare/0.21.3...0.21.4

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103782
reference_id	1103782
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103782

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2361288
reference_id	2361288
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2361288

reference_url

https://github.com/LibRaw/LibRaw/commit/be26e7639ecf8beb55f124ce780e99842de2e964

reference_id

be26e7639ecf8beb55f124ce780e99842de2e964

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:13:31Z/

url

https://github.com/LibRaw/LibRaw/commit/be26e7639ecf8beb55f124ce780e99842de2e964

reference_url

https://www.libraw.org/news/libraw-0-21-4-release

reference_id

libraw-0-21-4-release

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:13:31Z/

url

https://www.libraw.org/news/libraw-0-21-4-release

reference_url	https://usn.ubuntu.com/7485-1/
reference_id	USN-7485-1
reference_type
scores
url	https://usn.ubuntu.com/7485-1/

fixed_packages

url	pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1
purl	pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.20.2-2.1%252Bdeb12u1

aliases CVE-2025-43963

risk_score 1.3

exploitability 0.5

weighted_severity 2.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fbf4-mwnn-vqdp

url VCID-y455-nxwt-7ygd

vulnerability_id VCID-y455-nxwt-7ygd

summary LibRaw: Out-of-Bounds Read in Fujifilm 0xf00c Tag Parser in LibRaw

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43961.json

reference_id

reference_type

scores

value	2.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43961.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-43961

reference_id

reference_type

scores

value	0.0031
scoring_system	epss
scoring_elements	0.54155
published_at	2026-04-02T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54243
published_at	2026-04-21T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.5416
published_at	2026-04-07T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54212
published_at	2026-04-08T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54208
published_at	2026-04-09T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54258
published_at	2026-04-16T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.5424
published_at	2026-04-12T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54219
published_at	2026-04-13T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54262
published_at	2026-04-18T12:55:00Z

value	0.0031
scoring_system	epss
scoring_elements	0.54185
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-43961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43961

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/LibRaw/LibRaw/compare/0.21.3...0.21.4

reference_id

0.21.3...0.21.4

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:14:46Z/

url

https://github.com/LibRaw/LibRaw/compare/0.21.3...0.21.4

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103781
reference_id	1103781
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103781

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2361283
reference_id	2361283
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2361283

reference_url

https://github.com/LibRaw/LibRaw/commit/66fe663e02a4dd610b4e832f5d9af326709336c2

reference_id

66fe663e02a4dd610b4e832f5d9af326709336c2

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:14:46Z/

url

https://github.com/LibRaw/LibRaw/commit/66fe663e02a4dd610b4e832f5d9af326709336c2

reference_url

https://www.libraw.org/news/libraw-0-21-4-release

reference_id

libraw-0-21-4-release

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:14:46Z/

url

https://www.libraw.org/news/libraw-0-21-4-release

reference_url	https://usn.ubuntu.com/7485-1/
reference_id	USN-7485-1
reference_type
scores
url	https://usn.ubuntu.com/7485-1/

fixed_packages

url	pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1
purl	pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.20.2-2.1%252Bdeb12u1

aliases CVE-2025-43961

risk_score 1.3

exploitability 0.5

weighted_severity 2.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y455-nxwt-7ygd

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.20.2-2.1%252Bdeb12u1

Package Instance