Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/gstreamer-plugins-base@0.10.36-11?arch=el7_9

Type rpm

Namespace redhat

Name gstreamer-plugins-base

Version 0.10.36-11

Qualifiers

arch	el7_9

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-4ka2-hbcv-8uh2

vulnerability_id

VCID-4ka2-hbcv-8uh2

summary

GStreamer: GStreamer: Remote Code Execution via Heap-based Buffer Overflow in rtpqdm2depay

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3085.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3085.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-3085

reference_id

reference_type

scores

value	0.00274
scoring_system	epss
scoring_elements	0.50739
published_at	2026-04-02T12:55:00Z

value	0.00274
scoring_system	epss
scoring_elements	0.50721
published_at	2026-04-07T12:55:00Z

value	0.00274
scoring_system	epss
scoring_elements	0.50765
published_at	2026-04-04T12:55:00Z

value	0.00274
scoring_system	epss
scoring_elements	0.50777
published_at	2026-04-08T12:55:00Z

value	0.00274
scoring_system	epss
scoring_elements	0.50774
published_at	2026-04-09T12:55:00Z

value	0.00274
scoring_system	epss
scoring_elements	0.50817
published_at	2026-04-11T12:55:00Z

value	0.00274
scoring_system	epss
scoring_elements	0.50793
published_at	2026-04-12T12:55:00Z

value	0.00274
scoring_system	epss
scoring_elements	0.50778
published_at	2026-04-13T12:55:00Z

value	0.00298
scoring_system	epss
scoring_elements	0.53234
published_at	2026-04-16T12:55:00Z

value	0.00298
scoring_system	epss
scoring_elements	0.53222
published_at	2026-04-21T12:55:00Z

value	0.00298
scoring_system	epss
scoring_elements	0.5324
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-3085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3085
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3085

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2447495
reference_id	2447495
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2447495

reference_url

https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d60a94dee3c0a0942c9981491bf83e0de1900fbf

reference_id

d60a94dee3c0a0942c9981491bf83e0de1900fbf

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-16T20:25:47Z/

url

https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d60a94dee3c0a0942c9981491bf83e0de1900fbf

reference_url	https://access.redhat.com/errata/RHSA-2026:6259
reference_id	RHSA-2026:6259
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6259

reference_url	https://access.redhat.com/errata/RHSA-2026:6300
reference_id	RHSA-2026:6300
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6300

reference_url	https://access.redhat.com/errata/RHSA-2026:6750
reference_id	RHSA-2026:6750
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6750

reference_url	https://access.redhat.com/errata/RHSA-2026:7673
reference_id	RHSA-2026:7673
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7673

reference_url	https://access.redhat.com/errata/RHSA-2026:7850
reference_id	RHSA-2026:7850
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7850

reference_url	https://access.redhat.com/errata/RHSA-2026:8854
reference_id	RHSA-2026:8854
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8854

reference_url	https://access.redhat.com/errata/RHSA-2026:8857
reference_id	RHSA-2026:8857
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8857

reference_url	https://access.redhat.com/errata/RHSA-2026:8862
reference_id	RHSA-2026:8862
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8862

reference_url	https://access.redhat.com/errata/RHSA-2026:8874
reference_id	RHSA-2026:8874
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8874

reference_url	https://access.redhat.com/errata/RHSA-2026:8876
reference_id	RHSA-2026:8876
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8876

reference_url	https://usn.ubuntu.com/8131-1/
reference_id	USN-8131-1
reference_type
scores
url	https://usn.ubuntu.com/8131-1/

reference_url

https://www.zerodayinitiative.com/advisories/ZDI-26-167/

reference_id

ZDI-26-167

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-16T20:25:47Z/

url

https://www.zerodayinitiative.com/advisories/ZDI-26-167/

fixed_packages

aliases

CVE-2026-3085

risk_score

4.0

exploitability

0.5

weighted_severity

7.9

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-4ka2-hbcv-8uh2

url

VCID-a2rd-ntzd-2kdr

vulnerability_id

VCID-a2rd-ntzd-2kdr

summary

GStreamer: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2921.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2921.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-2921

reference_id

reference_type

scores

value	0.00032
scoring_system	epss
scoring_elements	0.09324
published_at	2026-04-02T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09285
published_at	2026-04-07T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09374
published_at	2026-04-04T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09361
published_at	2026-04-08T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09408
published_at	2026-04-09T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.0942
published_at	2026-04-11T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09391
published_at	2026-04-12T12:55:00Z

value	0.00032
scoring_system	epss
scoring_elements	0.09377
published_at	2026-04-13T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10333
published_at	2026-04-16T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10437
published_at	2026-04-21T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10307
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-2921

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2921
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2921

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2447496
reference_id	2447496
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2447496

reference_url

https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/e3a99c35266fc92dd6a18ac5fde028d0cda559e6

reference_id

e3a99c35266fc92dd6a18ac5fde028d0cda559e6

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-16T15:26:01Z/

url

https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/e3a99c35266fc92dd6a18ac5fde028d0cda559e6

reference_url	https://access.redhat.com/errata/RHSA-2026:6259
reference_id	RHSA-2026:6259
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6259

reference_url	https://access.redhat.com/errata/RHSA-2026:6300
reference_id	RHSA-2026:6300
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6300

reference_url	https://access.redhat.com/errata/RHSA-2026:6750
reference_id	RHSA-2026:6750
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6750

reference_url	https://access.redhat.com/errata/RHSA-2026:7673
reference_id	RHSA-2026:7673
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7673

reference_url	https://access.redhat.com/errata/RHSA-2026:7850
reference_id	RHSA-2026:7850
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7850

reference_url	https://access.redhat.com/errata/RHSA-2026:8854
reference_id	RHSA-2026:8854
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8854

reference_url	https://access.redhat.com/errata/RHSA-2026:8857
reference_id	RHSA-2026:8857
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8857

reference_url	https://access.redhat.com/errata/RHSA-2026:8862
reference_id	RHSA-2026:8862
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8862

reference_url	https://access.redhat.com/errata/RHSA-2026:8874
reference_id	RHSA-2026:8874
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8874

reference_url	https://access.redhat.com/errata/RHSA-2026:8876
reference_id	RHSA-2026:8876
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8876

reference_url	https://usn.ubuntu.com/8130-1/
reference_id	USN-8130-1
reference_type
scores
url	https://usn.ubuntu.com/8130-1/

reference_url

https://www.zerodayinitiative.com/advisories/ZDI-26-168/

reference_id

ZDI-26-168

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-16T15:26:01Z/

url

https://www.zerodayinitiative.com/advisories/ZDI-26-168/

fixed_packages

aliases

CVE-2026-2921

risk_score

3.5

exploitability

0.5

weighted_severity

7.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-a2rd-ntzd-2kdr

url

VCID-upbh-pvqc-4ubn

vulnerability_id

VCID-upbh-pvqc-4ubn

summary

GStreamer: GStreamer: Remote Code Execution via Out-Of-Bounds Write in rtpqdm2depay

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3083.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3083.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-3083

reference_id

reference_type

scores

value	0.00497
scoring_system	epss
scoring_elements	0.65814
published_at	2026-04-02T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65809
published_at	2026-04-07T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65844
published_at	2026-04-04T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65862
published_at	2026-04-08T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65873
published_at	2026-04-09T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65892
published_at	2026-04-11T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.6588
published_at	2026-04-12T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.6585
published_at	2026-04-13T12:55:00Z

value	0.00542
scoring_system	epss
scoring_elements	0.67719
published_at	2026-04-16T12:55:00Z

value	0.00542
scoring_system	epss
scoring_elements	0.67713
published_at	2026-04-21T12:55:00Z

value	0.00542
scoring_system	epss
scoring_elements	0.67732
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-3083

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3083
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3083

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2447498
reference_id	2447498
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2447498

reference_url

https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d60a94dee3c0a0942c9981491bf83e0de1900fbf

reference_id

d60a94dee3c0a0942c9981491bf83e0de1900fbf

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-16T15:25:51Z/

url

https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d60a94dee3c0a0942c9981491bf83e0de1900fbf

reference_url	https://access.redhat.com/errata/RHSA-2026:6259
reference_id	RHSA-2026:6259
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6259

reference_url	https://access.redhat.com/errata/RHSA-2026:6300
reference_id	RHSA-2026:6300
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6300

reference_url	https://access.redhat.com/errata/RHSA-2026:6750
reference_id	RHSA-2026:6750
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6750

reference_url	https://access.redhat.com/errata/RHSA-2026:7673
reference_id	RHSA-2026:7673
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7673

reference_url	https://access.redhat.com/errata/RHSA-2026:7850
reference_id	RHSA-2026:7850
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7850

reference_url	https://access.redhat.com/errata/RHSA-2026:8854
reference_id	RHSA-2026:8854
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8854

reference_url	https://access.redhat.com/errata/RHSA-2026:8857
reference_id	RHSA-2026:8857
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8857

reference_url	https://access.redhat.com/errata/RHSA-2026:8862
reference_id	RHSA-2026:8862
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8862

reference_url	https://access.redhat.com/errata/RHSA-2026:8874
reference_id	RHSA-2026:8874
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8874

reference_url	https://access.redhat.com/errata/RHSA-2026:8876
reference_id	RHSA-2026:8876
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8876

reference_url	https://usn.ubuntu.com/8131-1/
reference_id	USN-8131-1
reference_type
scores
url	https://usn.ubuntu.com/8131-1/

reference_url

https://www.zerodayinitiative.com/advisories/ZDI-26-166/

reference_id

ZDI-26-166

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-16T15:25:51Z/

url

https://www.zerodayinitiative.com/advisories/ZDI-26-166/

fixed_packages

aliases

CVE-2026-3083

risk_score

4.0

exploitability

0.5

weighted_severity

7.9

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-upbh-pvqc-4ubn

Fixing_vulnerabilities

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer-plugins-base@0.10.36-11%3Farch=el7_9

Package Instance