Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/katello@3.0.0-33?arch=el7sat
Typerpm
Namespaceredhat
Namekatello
Version3.0.0-33
Qualifiers
arch el7sat
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-n87q-79je-4kcj
vulnerability_id VCID-n87q-79je-4kcj
summary Twisted before 16.3.1 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect a CGI application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1000111.json
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1000111.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-1000111
reference_id
reference_type
scores
0
value 0.00694
scoring_system epss
scoring_elements 0.71823
published_at 2026-04-01T12:55:00Z
1
value 0.00694
scoring_system epss
scoring_elements 0.71881
published_at 2026-04-12T12:55:00Z
2
value 0.00694
scoring_system epss
scoring_elements 0.71899
published_at 2026-04-11T12:55:00Z
3
value 0.00694
scoring_system epss
scoring_elements 0.71875
published_at 2026-04-09T12:55:00Z
4
value 0.00694
scoring_system epss
scoring_elements 0.71864
published_at 2026-04-13T12:55:00Z
5
value 0.00694
scoring_system epss
scoring_elements 0.71825
published_at 2026-04-07T12:55:00Z
6
value 0.00694
scoring_system epss
scoring_elements 0.71851
published_at 2026-04-04T12:55:00Z
7
value 0.00694
scoring_system epss
scoring_elements 0.71832
published_at 2026-04-02T12:55:00Z
8
value 0.00694
scoring_system epss
scoring_elements 0.71906
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-1000111
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1000111
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1000111
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/advisories/GHSA-3gqj-cmxr-p4x2
reference_id
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3gqj-cmxr-p4x2
5
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/twisted/PYSEC-2020-214.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/twisted/PYSEC-2020-214.yaml
6
reference_url https://github.com/twisted/twisted
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/twisted/twisted
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-1000111
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:N/I:P/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
2
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-1000111
8
reference_url https://twistedmatrix.com/pipermail/twisted-web/2016-August/005268.html
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://twistedmatrix.com/pipermail/twisted-web/2016-August/005268.html
9
reference_url https://twistedmatrix.com/trac/ticket/8623
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://twistedmatrix.com/trac/ticket/8623
10
reference_url https://www.openwall.com/lists/oss-security/2016/07/18/6
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.openwall.com/lists/oss-security/2016/07/18/6
11
reference_url http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html
12
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1357345
reference_id 1357345
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1357345
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:twisted:twisted:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:twisted:twisted:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:twisted:twisted:*:*:*:*:*:*:*:*
14
reference_url https://access.redhat.com/errata/RHSA-2016:1978
reference_id RHSA-2016:1978
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:1978
15
reference_url https://access.redhat.com/errata/RHSA-2018:0273
reference_id RHSA-2018:0273
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:0273
16
reference_url https://usn.ubuntu.com/3585-1/
reference_id USN-3585-1
reference_type
scores
url https://usn.ubuntu.com/3585-1/
fixed_packages
aliases CVE-2016-1000111, GHSA-3gqj-cmxr-p4x2, PYSEC-2020-214
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n87q-79je-4kcj
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/katello@3.0.0-33%3Farch=el7sat