Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/audacity@1.3.12-6
Typedeb
Namespacedebian
Nameaudacity
Version1.3.12-6
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.4.2~dfsg0-5
Latest_non_vulnerable_version2.4.2~dfsg0-5
Affected_by_vulnerabilities
0
url VCID-4e8r-fvv6-f7f2
vulnerability_id VCID-4e8r-fvv6-f7f2
summary Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP2 file.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-2541
reference_id
reference_type
scores
0
value 0.00859
scoring_system epss
scoring_elements 0.74968
published_at 2026-04-01T12:55:00Z
1
value 0.00859
scoring_system epss
scoring_elements 0.74971
published_at 2026-04-02T12:55:00Z
2
value 0.00859
scoring_system epss
scoring_elements 0.75
published_at 2026-04-04T12:55:00Z
3
value 0.00859
scoring_system epss
scoring_elements 0.74976
published_at 2026-04-07T12:55:00Z
4
value 0.00859
scoring_system epss
scoring_elements 0.7501
published_at 2026-04-08T12:55:00Z
5
value 0.00859
scoring_system epss
scoring_elements 0.75022
published_at 2026-04-12T12:55:00Z
6
value 0.00859
scoring_system epss
scoring_elements 0.75043
published_at 2026-04-11T12:55:00Z
7
value 0.00859
scoring_system epss
scoring_elements 0.75011
published_at 2026-04-13T12:55:00Z
8
value 0.00859
scoring_system epss
scoring_elements 0.75047
published_at 2026-04-16T12:55:00Z
9
value 0.00859
scoring_system epss
scoring_elements 0.75055
published_at 2026-04-18T12:55:00Z
10
value 0.00859
scoring_system epss
scoring_elements 0.75044
published_at 2026-04-21T12:55:00Z
11
value 0.00859
scoring_system epss
scoring_elements 0.75083
published_at 2026-04-24T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-2541
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2541
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2541
fixed_packages
0
url pkg:deb/debian/audacity@2.1.2-2
purl pkg:deb/debian/audacity@2.1.2-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.1.2-2
aliases CVE-2016-2541
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4e8r-fvv6-f7f2
1
url VCID-nxc6-nv2g-17g6
vulnerability_id VCID-nxc6-nv2g-17g6
summary Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted FORMATCHUNK structure.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-2540
reference_id
reference_type
scores
0
value 0.00908
scoring_system epss
scoring_elements 0.75708
published_at 2026-04-01T12:55:00Z
1
value 0.00908
scoring_system epss
scoring_elements 0.7571
published_at 2026-04-02T12:55:00Z
2
value 0.00908
scoring_system epss
scoring_elements 0.75741
published_at 2026-04-04T12:55:00Z
3
value 0.00908
scoring_system epss
scoring_elements 0.7572
published_at 2026-04-07T12:55:00Z
4
value 0.00908
scoring_system epss
scoring_elements 0.75754
published_at 2026-04-08T12:55:00Z
5
value 0.00908
scoring_system epss
scoring_elements 0.75766
published_at 2026-04-09T12:55:00Z
6
value 0.00908
scoring_system epss
scoring_elements 0.7579
published_at 2026-04-11T12:55:00Z
7
value 0.00908
scoring_system epss
scoring_elements 0.75771
published_at 2026-04-12T12:55:00Z
8
value 0.00908
scoring_system epss
scoring_elements 0.75765
published_at 2026-04-13T12:55:00Z
9
value 0.00908
scoring_system epss
scoring_elements 0.75804
published_at 2026-04-16T12:55:00Z
10
value 0.00908
scoring_system epss
scoring_elements 0.75807
published_at 2026-04-18T12:55:00Z
11
value 0.00908
scoring_system epss
scoring_elements 0.75792
published_at 2026-04-21T12:55:00Z
12
value 0.00908
scoring_system epss
scoring_elements 0.75832
published_at 2026-04-24T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-2540
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2540
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2540
fixed_packages
0
url pkg:deb/debian/audacity@2.1.2-2
purl pkg:deb/debian/audacity@2.1.2-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.1.2-2
aliases CVE-2016-2540
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nxc6-nv2g-17g6
2
url VCID-veb9-7659-wfg7
vulnerability_id VCID-veb9-7659-wfg7
summary Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and play the temporary audio .au files located there.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-11867
reference_id
reference_type
scores
0
value 0.00118
scoring_system epss
scoring_elements 0.3055
published_at 2026-04-24T12:55:00Z
1
value 0.00118
scoring_system epss
scoring_elements 0.30749
published_at 2026-04-01T12:55:00Z
2
value 0.00118
scoring_system epss
scoring_elements 0.30876
published_at 2026-04-02T12:55:00Z
3
value 0.00118
scoring_system epss
scoring_elements 0.30923
published_at 2026-04-04T12:55:00Z
4
value 0.00118
scoring_system epss
scoring_elements 0.30743
published_at 2026-04-07T12:55:00Z
5
value 0.00118
scoring_system epss
scoring_elements 0.30801
published_at 2026-04-08T12:55:00Z
6
value 0.00118
scoring_system epss
scoring_elements 0.30833
published_at 2026-04-09T12:55:00Z
7
value 0.00118
scoring_system epss
scoring_elements 0.30835
published_at 2026-04-11T12:55:00Z
8
value 0.00118
scoring_system epss
scoring_elements 0.3079
published_at 2026-04-12T12:55:00Z
9
value 0.00118
scoring_system epss
scoring_elements 0.30745
published_at 2026-04-13T12:55:00Z
10
value 0.00118
scoring_system epss
scoring_elements 0.3077
published_at 2026-04-16T12:55:00Z
11
value 0.00118
scoring_system epss
scoring_elements 0.3075
published_at 2026-04-18T12:55:00Z
12
value 0.00118
scoring_system epss
scoring_elements 0.30716
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-11867
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11867
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976874
reference_id 976874
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976874
3
reference_url https://security.archlinux.org/AVG-1311
reference_id AVG-1311
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1311
4
reference_url https://usn.ubuntu.com/7211-1/
reference_id USN-7211-1
reference_type
scores
url https://usn.ubuntu.com/7211-1/
fixed_packages
0
url pkg:deb/debian/audacity@2.4.2~dfsg0-5
purl pkg:deb/debian/audacity@2.4.2~dfsg0-5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.4.2~dfsg0-5
aliases CVE-2020-11867
risk_score 1.4
exploitability 0.5
weighted_severity 2.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-veb9-7659-wfg7
Fixing_vulnerabilities
0
url VCID-c1k4-7mhy-73gp
vulnerability_id VCID-c1k4-7mhy-73gp
summary A boundary error in Audacity allows for the execution of arbitrary code.
references
0
reference_url http://bugs.gentoo.org/show_bug.cgi?id=253493
reference_id
reference_type
scores
url http://bugs.gentoo.org/show_bug.cgi?id=253493
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
2
reference_url http://n2.nabble.com/Audacity-%22String_parse::get_nonspace_quoted%28%29%22-Buffer-Overflow-td2139537.html
reference_id
reference_type
scores
url http://n2.nabble.com/Audacity-%22String_parse::get_nonspace_quoted%28%29%22-Buffer-Overflow-td2139537.html
3
reference_url http://osvdb.org/51070
reference_id
reference_type
scores
url http://osvdb.org/51070
4
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0490.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0490.json
5
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-0490
reference_id
reference_type
scores
0
value 0.5806
scoring_system epss
scoring_elements 0.98191
published_at 2026-04-21T12:55:00Z
1
value 0.5806
scoring_system epss
scoring_elements 0.9817
published_at 2026-04-01T12:55:00Z
2
value 0.5806
scoring_system epss
scoring_elements 0.98173
published_at 2026-04-02T12:55:00Z
3
value 0.5806
scoring_system epss
scoring_elements 0.98176
published_at 2026-04-04T12:55:00Z
4
value 0.5806
scoring_system epss
scoring_elements 0.98178
published_at 2026-04-07T12:55:00Z
5
value 0.5806
scoring_system epss
scoring_elements 0.98182
published_at 2026-04-08T12:55:00Z
6
value 0.5806
scoring_system epss
scoring_elements 0.98183
published_at 2026-04-09T12:55:00Z
7
value 0.5806
scoring_system epss
scoring_elements 0.98187
published_at 2026-04-13T12:55:00Z
8
value 0.5806
scoring_system epss
scoring_elements 0.98193
published_at 2026-04-24T12:55:00Z
9
value 0.5806
scoring_system epss
scoring_elements 0.98194
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-0490
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0490
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0490
7
reference_url http://secunia.com/advisories/33356
reference_id
reference_type
scores
url http://secunia.com/advisories/33356
8
reference_url https://www.exploit-db.com/exploits/7634
reference_id
reference_type
scores
url https://www.exploit-db.com/exploits/7634
9
reference_url http://www.securityfocus.com/bid/33090
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/33090
10
reference_url http://www.vupen.com/english/advisories/2009/0008
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2009/0008
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=484951
reference_id 484951
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=484951
12
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514138
reference_id 514138
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514138
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:audacityteam:audacity:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:audacityteam:audacity:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:audacityteam:audacity:*:*:*:*:*:*:*:*
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2009-0490
reference_id CVE-2009-0490
reference_type
scores
0
value 9.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:C/I:C/A:C
url https://nvd.nist.gov/vuln/detail/CVE-2009-0490
15
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/10322.py
reference_id CVE-2009-0490;OSVDB-51070
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/10322.py
16
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/9501.py
reference_id CVE-2009-0490;OSVDB-51070
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/9501.py
17
reference_url https://security.gentoo.org/glsa/200903-03
reference_id GLSA-200903-03
reference_type
scores
url https://security.gentoo.org/glsa/200903-03
18
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/7634.pl
reference_id OSVDB-51070;CVE-2009-0490
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/7634.pl
fixed_packages
0
url pkg:deb/debian/audacity@1.3.12-6
purl pkg:deb/debian/audacity@1.3.12-6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4e8r-fvv6-f7f2
1
vulnerability VCID-nxc6-nv2g-17g6
2
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.3.12-6
aliases CVE-2009-0490
risk_score 10.0
exploitability 2.0
weighted_severity 8.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c1k4-7mhy-73gp
Risk_score1.4
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.3.12-6