Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/sendmail@8.13.8-8?arch=el5

Type rpm

Namespace redhat

Name sendmail

Version 8.13.8-8

Qualifiers

arch	el5

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-6r2h-krab-7kfb

vulnerability_id

VCID-6r2h-krab-7kfb

summary

sendmail allows external mail with from address xxx@localhost.localdomain

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7176.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7176.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-7176

reference_id

reference_type

scores

value	0.00729
scoring_system	epss
scoring_elements	0.72584
published_at	2026-04-01T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72673
published_at	2026-04-16T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72683
published_at	2026-04-18T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72592
published_at	2026-04-02T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72608
published_at	2026-04-04T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72585
published_at	2026-04-07T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72624
published_at	2026-04-08T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72636
published_at	2026-04-09T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72658
published_at	2026-04-11T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.7264
published_at	2026-04-12T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72631
published_at	2026-04-13T12:55:00Z

value	0.00757
scoring_system	epss
scoring_elements	0.73325
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-7176

reference_url	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=171838
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=171838

reference_url	http://secunia.com/advisories/25098
reference_id
reference_type
scores
url	http://secunia.com/advisories/25098

reference_url	http://secunia.com/advisories/25743
reference_id
reference_type
scores
url	http://secunia.com/advisories/25743

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11499
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11499

reference_url	http://support.avaya.com/elmodocs2/security/ASA-2007-248.htm
reference_id
reference_type
scores
url	http://support.avaya.com/elmodocs2/security/ASA-2007-248.htm

reference_url	http://www.redhat.com/support/errata/RHSA-2007-0252.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2007-0252.html

reference_url	http://www.securityfocus.com/bid/23742
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/23742

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=238540
reference_id	238540
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=238540

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:8.13.1.2:::::::*
reference_id	cpe:2.3:a:sendmail:sendmail:8.13.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:8.13.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:4.0:update4::::::
reference_id	cpe:2.3:o:redhat:enterprise_linux:4.0:update4::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:4.0:update4::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2006-7176

reference_id

CVE-2006-7176

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2006-7176

reference_url	https://access.redhat.com/errata/RHSA-2007:0252
reference_id	RHSA-2007:0252
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0252

reference_url	https://access.redhat.com/errata/RHSA-2010:0237
reference_id	RHSA-2010:0237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0237

fixed_packages

aliases

CVE-2006-7176

risk_score

1.9

exploitability

0.5

weighted_severity

3.9

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-6r2h-krab-7kfb

url VCID-dk9t-39dj-cud4

vulnerability_id VCID-dk9t-39dj-cud4

summary

An error in the hostname matching in sendmail might enable remote
    attackers to conduct man-in-the-middle attacks.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4565.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4565.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-4565

reference_id

reference_type

scores

value	0.00771
scoring_system	epss
scoring_elements	0.73476
published_at	2026-04-01T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73485
published_at	2026-04-02T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73507
published_at	2026-04-04T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73479
published_at	2026-04-07T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73516
published_at	2026-04-08T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73529
published_at	2026-04-09T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73552
published_at	2026-04-11T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73536
published_at	2026-04-12T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73528
published_at	2026-04-13T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73572
published_at	2026-04-16T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73582
published_at	2026-04-18T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.73575
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-4565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4565

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=552622
reference_id	552622
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=552622

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=564581
reference_id	564581
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=564581

reference_url	https://security.gentoo.org/glsa/201206-30
reference_id	GLSA-201206-30
reference_type
scores
url	https://security.gentoo.org/glsa/201206-30

reference_url	https://access.redhat.com/errata/RHSA-2010:0237
reference_id	RHSA-2010:0237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0237

reference_url	https://access.redhat.com/errata/RHSA-2011:0262
reference_id	RHSA-2011:0262
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0262

fixed_packages

aliases CVE-2009-4565

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dk9t-39dj-cud4

Fixing_vulnerabilities

Risk_score 1.9

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/sendmail@8.13.8-8%3Farch=el5

Package Instance