Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/exim4@4.98.2-1~bpo12%2B1

Type deb

Namespace debian

Name exim4

Version 4.98.2-1~bpo12+1

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.98.2-1+deb13u1

Latest_non_vulnerable_version 4.99.2-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-gdsh-48ys-33ew

vulnerability_id VCID-gdsh-48ys-33ew

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-40684

reference_id

reference_type

scores

value	0.00055
scoring_system	epss
scoring_elements	0.16819
published_at	2026-05-05T12:55:00Z

value	0.00072
scoring_system	epss
scoring_elements	0.21685
published_at	2026-05-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-40684

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40684
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40684

reference_url

https://www.openwall.com/lists/oss-security/2026/04/30/21

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:25:46Z/

url

https://www.openwall.com/lists/oss-security/2026/04/30/21

reference_url

https://code.exim.org/exim/exim/commit/628bbaca7672748d941a12e7cd5f0122a4e18c81

reference_id

628bbaca7672748d941a12e7cd5f0122a4e18c81

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:25:46Z/

url

https://code.exim.org/exim/exim/commit/628bbaca7672748d941a12e7cd5f0122a4e18c81

reference_url

https://exim.org/static/doc/security/cve-2026-04.1/CVE2026-40684.assessment

reference_id

CVE2026-40684.assessment

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:25:46Z/

url

https://exim.org/static/doc/security/cve-2026-04.1/CVE2026-40684.assessment

reference_url

https://exim.org/static/doc/security/CVE-2026-40684.txt

reference_id

CVE-2026-40684.txt

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:25:46Z/

url

https://exim.org/static/doc/security/CVE-2026-40684.txt

fixed_packages

url	pkg:deb/debian/exim4@4.96-15%2Bdeb12u8
purl	pkg:deb/debian/exim4@4.96-15%2Bdeb12u8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.96-15%252Bdeb12u8

url	pkg:deb/debian/exim4@4.98.2-1~bpo12%2B1
purl	pkg:deb/debian/exim4@4.98.2-1~bpo12%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1~bpo12%252B1

url	pkg:deb/debian/exim4@4.98.2-1%2Bdeb13u1
purl	pkg:deb/debian/exim4@4.98.2-1%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1%252Bdeb13u1

url	pkg:deb/debian/exim4@4.99.1-1~bpo13%2B1
purl	pkg:deb/debian/exim4@4.99.1-1~bpo13%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-1~bpo13%252B1

url	pkg:deb/debian/exim4@4.99.1-4
purl	pkg:deb/debian/exim4@4.99.1-4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-4

url	pkg:deb/debian/exim4@4.99.1-6
purl	pkg:deb/debian/exim4@4.99.1-6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-6

url	pkg:deb/debian/exim4@4.99.2-1
purl	pkg:deb/debian/exim4@4.99.2-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.2-1

aliases CVE-2026-40684

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gdsh-48ys-33ew

url VCID-huhp-241r-jbf6

vulnerability_id VCID-huhp-241r-jbf6

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-40685

reference_id

reference_type

scores

value	0.00054
scoring_system	epss
scoring_elements	0.16536
published_at	2026-05-05T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21418
published_at	2026-05-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-40685

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40685
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40685

reference_url

https://www.openwall.com/lists/oss-security/2026/04/30/21

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:26:30Z/

url

https://www.openwall.com/lists/oss-security/2026/04/30/21

reference_url

https://code.exim.org/exim/exim/commit/9fdc057e71b87c87a0d3d2288b2810a0efaaba57

reference_id

9fdc057e71b87c87a0d3d2288b2810a0efaaba57

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:26:30Z/

url

https://code.exim.org/exim/exim/commit/9fdc057e71b87c87a0d3d2288b2810a0efaaba57

reference_url

https://exim.org/static/doc/security/cve-2026-04.1/CVE2026-40685.assessment

reference_id

CVE2026-40685.assessment

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:26:30Z/

url

https://exim.org/static/doc/security/cve-2026-04.1/CVE2026-40685.assessment

reference_url

https://exim.org/static/doc/security/CVE-2026-40685.txt

reference_id

CVE-2026-40685.txt

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:26:30Z/

url

https://exim.org/static/doc/security/CVE-2026-40685.txt

reference_url	https://usn.ubuntu.com/8228-1/
reference_id	USN-8228-1
reference_type
scores
url	https://usn.ubuntu.com/8228-1/

fixed_packages

url	pkg:deb/debian/exim4@4.96-15%2Bdeb12u8
purl	pkg:deb/debian/exim4@4.96-15%2Bdeb12u8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.96-15%252Bdeb12u8

url	pkg:deb/debian/exim4@4.98.2-1~bpo12%2B1
purl	pkg:deb/debian/exim4@4.98.2-1~bpo12%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1~bpo12%252B1

url	pkg:deb/debian/exim4@4.98.2-1%2Bdeb13u1
purl	pkg:deb/debian/exim4@4.98.2-1%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1%252Bdeb13u1

url	pkg:deb/debian/exim4@4.99.1-1~bpo13%2B1
purl	pkg:deb/debian/exim4@4.99.1-1~bpo13%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-1~bpo13%252B1

url	pkg:deb/debian/exim4@4.99.1-4
purl	pkg:deb/debian/exim4@4.99.1-4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-4

url	pkg:deb/debian/exim4@4.99.1-6
purl	pkg:deb/debian/exim4@4.99.1-6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-6

url	pkg:deb/debian/exim4@4.99.2-1
purl	pkg:deb/debian/exim4@4.99.2-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.2-1

aliases CVE-2026-40685

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-huhp-241r-jbf6

url VCID-hy1a-tah2-27gq

vulnerability_id VCID-hy1a-tah2-27gq

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-40686

reference_id

reference_type

scores

value	0.00031
scoring_system	epss
scoring_elements	0.0866
published_at	2026-05-05T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12105
published_at	2026-05-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-40686

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40686
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40686

reference_url

https://www.openwall.com/lists/oss-security/2026/04/30/21

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:27:01Z/

url

https://www.openwall.com/lists/oss-security/2026/04/30/21

reference_url

https://exim.org/static/doc/security/cve-2026-04.1/CVE2026-40686.assessment

reference_id

CVE2026-40686.assessment

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:27:01Z/

url

https://exim.org/static/doc/security/cve-2026-04.1/CVE2026-40686.assessment

reference_url

https://exim.org/static/doc/security/CVE-2026-40686.txt

reference_id

CVE-2026-40686.txt

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:27:01Z/

url

https://exim.org/static/doc/security/CVE-2026-40686.txt

reference_url

https://code.exim.org/exim/exim/commit/f2570bde16fb4d4a1242ff363a4c4eecf6372efc

reference_id

f2570bde16fb4d4a1242ff363a4c4eecf6372efc

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:27:01Z/

url

https://code.exim.org/exim/exim/commit/f2570bde16fb4d4a1242ff363a4c4eecf6372efc

reference_url	https://usn.ubuntu.com/8228-1/
reference_id	USN-8228-1
reference_type
scores
url	https://usn.ubuntu.com/8228-1/

fixed_packages

url	pkg:deb/debian/exim4@4.96-15%2Bdeb12u8
purl	pkg:deb/debian/exim4@4.96-15%2Bdeb12u8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.96-15%252Bdeb12u8

url	pkg:deb/debian/exim4@4.98.2-1~bpo12%2B1
purl	pkg:deb/debian/exim4@4.98.2-1~bpo12%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1~bpo12%252B1

url	pkg:deb/debian/exim4@4.98.2-1%2Bdeb13u1
purl	pkg:deb/debian/exim4@4.98.2-1%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1%252Bdeb13u1

url	pkg:deb/debian/exim4@4.99.1-1~bpo13%2B1
purl	pkg:deb/debian/exim4@4.99.1-1~bpo13%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-1~bpo13%252B1

url	pkg:deb/debian/exim4@4.99.1-4
purl	pkg:deb/debian/exim4@4.99.1-4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-4

url	pkg:deb/debian/exim4@4.99.1-6
purl	pkg:deb/debian/exim4@4.99.1-6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-6

url	pkg:deb/debian/exim4@4.99.2-1
purl	pkg:deb/debian/exim4@4.99.2-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.2-1

aliases CVE-2026-40686

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hy1a-tah2-27gq

url VCID-ry9v-ge65-sqbb

vulnerability_id VCID-ry9v-ge65-sqbb

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-40687

reference_id

reference_type

scores

value	0.00065
scoring_system	epss
scoring_elements	0.19804
published_at	2026-05-05T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.2277
published_at	2026-05-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-40687

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40687
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40687

reference_url

https://www.openwall.com/lists/oss-security/2026/04/30/21

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:25:03Z/

url

https://www.openwall.com/lists/oss-security/2026/04/30/21

reference_url

https://code.exim.org/exim/exim/commit/68b963b9f75ca27b38e1c0f8c87037990199f505

reference_id

68b963b9f75ca27b38e1c0f8c87037990199f505

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:25:03Z/

url

https://code.exim.org/exim/exim/commit/68b963b9f75ca27b38e1c0f8c87037990199f505

reference_url

https://exim.org/static/doc/security/cve-2026-04.1/CVE2026-40687.assessment

reference_id

CVE2026-40687.assessment

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:25:03Z/

url

https://exim.org/static/doc/security/cve-2026-04.1/CVE2026-40687.assessment

reference_url

https://exim.org/static/doc/security/CVE-2026-40687.txt

reference_id

CVE-2026-40687.txt

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-01T14:25:03Z/

url

https://exim.org/static/doc/security/CVE-2026-40687.txt

reference_url	https://usn.ubuntu.com/8228-1/
reference_id	USN-8228-1
reference_type
scores
url	https://usn.ubuntu.com/8228-1/

fixed_packages

url	pkg:deb/debian/exim4@4.96-15%2Bdeb12u8
purl	pkg:deb/debian/exim4@4.96-15%2Bdeb12u8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.96-15%252Bdeb12u8

url	pkg:deb/debian/exim4@4.98.2-1~bpo12%2B1
purl	pkg:deb/debian/exim4@4.98.2-1~bpo12%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1~bpo12%252B1

url	pkg:deb/debian/exim4@4.98.2-1%2Bdeb13u1
purl	pkg:deb/debian/exim4@4.98.2-1%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1%252Bdeb13u1

url	pkg:deb/debian/exim4@4.99.1-1~bpo13%2B1
purl	pkg:deb/debian/exim4@4.99.1-1~bpo13%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-1~bpo13%252B1

url	pkg:deb/debian/exim4@4.99.1-4
purl	pkg:deb/debian/exim4@4.99.1-4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-4

url	pkg:deb/debian/exim4@4.99.1-6
purl	pkg:deb/debian/exim4@4.99.1-6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-6

aliases CVE-2026-40687

risk_score 2.1

exploitability 0.5

weighted_severity 4.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ry9v-ge65-sqbb

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1~bpo12%252B1

Package Instance