Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/openvswitch@2.9.0-83.el7fdp?arch=1

Type rpm

Namespace redhat

Name openvswitch

Version 2.9.0-83.el7fdp

Qualifiers

arch	1

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-167g-xgrw-kubp

vulnerability_id

VCID-167g-xgrw-kubp

summary

openvswitch: Mishandle of group mods in lib/ofp-util.c:parse_group_prop_ntr_selection_method() allows for assertion failure

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17204.json

reference_id

reference_type

scores

value	2.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17204.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-17204

reference_id

reference_type

scores

value	0.01127
scoring_system	epss
scoring_elements	0.78236
published_at	2026-04-01T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78244
published_at	2026-04-02T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78275
published_at	2026-04-04T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78257
published_at	2026-04-07T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78283
published_at	2026-04-08T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78289
published_at	2026-04-09T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78315
published_at	2026-04-11T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78297
published_at	2026-04-12T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78293
published_at	2026-04-13T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78322
published_at	2026-04-16T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.7832
published_at	2026-04-18T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78317
published_at	2026-04-21T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78349
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-17204

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17204
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17204

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1632522
reference_id	1632522
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1632522

reference_url	https://access.redhat.com/errata/RHSA-2018:3500
reference_id	RHSA-2018:3500
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3500

reference_url	https://access.redhat.com/errata/RHSA-2019:0053
reference_id	RHSA-2019:0053
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0053

reference_url	https://access.redhat.com/errata/RHSA-2019:0081
reference_id	RHSA-2019:0081
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0081

reference_url	https://usn.ubuntu.com/3873-1/
reference_id	USN-3873-1
reference_type
scores
url	https://usn.ubuntu.com/3873-1/

fixed_packages

aliases

CVE-2018-17204

risk_score

1.6

exploitability

0.5

weighted_severity

3.2

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-167g-xgrw-kubp

url

VCID-2zq9-f9yb-v3gw

vulnerability_id

VCID-2zq9-f9yb-v3gw

summary

openvswitch: Buffer over-read in lib/ofp-actions.c:decode_bundle()

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17206.json

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17206.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-17206

reference_id

reference_type

scores

value	0.02077
scoring_system	epss
scoring_elements	0.83903
published_at	2026-04-01T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83918
published_at	2026-04-02T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83934
published_at	2026-04-04T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83937
published_at	2026-04-07T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83961
published_at	2026-04-08T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83967
published_at	2026-04-09T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83983
published_at	2026-04-11T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83976
published_at	2026-04-12T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83972
published_at	2026-04-13T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83996
published_at	2026-04-16T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83997
published_at	2026-04-18T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.83999
published_at	2026-04-21T12:55:00Z

value	0.02077
scoring_system	epss
scoring_elements	0.84025
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-17206

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17206
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17206

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1632528
reference_id	1632528
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1632528

reference_url	https://access.redhat.com/errata/RHSA-2018:3500
reference_id	RHSA-2018:3500
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3500

reference_url	https://access.redhat.com/errata/RHSA-2019:0053
reference_id	RHSA-2019:0053
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0053

reference_url	https://access.redhat.com/errata/RHSA-2019:0081
reference_id	RHSA-2019:0081
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0081

reference_url	https://usn.ubuntu.com/3873-1/
reference_id	USN-3873-1
reference_type
scores
url	https://usn.ubuntu.com/3873-1/

fixed_packages

aliases

CVE-2018-17206

risk_score

2.2

exploitability

0.5

weighted_severity

4.4

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-2zq9-f9yb-v3gw

url

VCID-6gap-zvsn-fqg7

vulnerability_id

VCID-6gap-zvsn-fqg7

summary

openvswitch: Error during bundle commit in ofproto/ofproto.c:ofproto_rule_insert__() allows for crash

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17205.json

reference_id

reference_type

scores

value	4.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17205.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-17205

reference_id

reference_type

scores

value	0.00771
scoring_system	epss
scoring_elements	0.73487
published_at	2026-04-01T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73495
published_at	2026-04-02T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73518
published_at	2026-04-04T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73489
published_at	2026-04-07T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73526
published_at	2026-04-08T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.7354
published_at	2026-04-09T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73563
published_at	2026-04-11T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73546
published_at	2026-04-12T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73538
published_at	2026-04-13T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73581
published_at	2026-04-16T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73591
published_at	2026-04-18T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73584
published_at	2026-04-21T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73617
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-17205

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17205
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17205

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1632525
reference_id	1632525
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1632525

reference_url	https://access.redhat.com/errata/RHSA-2018:3500
reference_id	RHSA-2018:3500
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3500

reference_url	https://access.redhat.com/errata/RHSA-2019:0053
reference_id	RHSA-2019:0053
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0053

reference_url	https://access.redhat.com/errata/RHSA-2019:0081
reference_id	RHSA-2019:0081
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0081

reference_url	https://usn.ubuntu.com/3873-1/
reference_id	USN-3873-1
reference_type
scores
url	https://usn.ubuntu.com/3873-1/

fixed_packages

aliases

CVE-2018-17205

risk_score

2.0

exploitability

0.5

weighted_severity

4.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-6gap-zvsn-fqg7

Fixing_vulnerabilities

Risk_score 2.2

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openvswitch@2.9.0-83.el7fdp%3Farch=1

Package Instance