Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/mbedtls2@2.16.3-r0?arch=aarch64&distroversion=v3.23&reponame=community
Typeapk
Namespacealpine
Namembedtls2
Version2.16.3-r0
Qualifiers
arch aarch64
distroversion v3.23
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2.16.4-r0
Latest_non_vulnerable_version2.28.10-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-qqut-7fh2-byee
vulnerability_id VCID-qqut-7fh2-byee
summary Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times. (For Mbed TLS, the fix is also available in versions 2.7.12 and 2.16.3.)
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-16910
reference_id
reference_type
scores
0
value 0.00671
scoring_system epss
scoring_elements 0.71771
published_at 2026-06-04T12:55:00Z
1
value 0.00671
scoring_system epss
scoring_elements 0.71811
published_at 2026-06-05T12:55:00Z
2
value 0.00671
scoring_system epss
scoring_elements 0.71817
published_at 2026-06-06T12:55:00Z
3
value 0.00671
scoring_system epss
scoring_elements 0.71794
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-16910
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16910
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16910
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941265
reference_id 941265
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941265
fixed_packages
0
url pkg:apk/alpine/mbedtls2@2.16.3-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/mbedtls2@2.16.3-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/mbedtls2@2.16.3-r0%3Farch=aarch64&distroversion=v3.23&reponame=community
aliases CVE-2019-16910
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qqut-7fh2-byee
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/mbedtls2@2.16.3-r0%3Farch=aarch64&distroversion=v3.23&reponame=community