Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/libxml2@2.4.19-11?arch=ent

Type rpm

Namespace redhat

Name libxml2

Version 2.4.19-11

Qualifiers

arch	ent

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-frd7-r2rj-s7c7

vulnerability_id

VCID-frd7-r2rj-s7c7

summary

Multiple vulnerabilities in libxml2 might lead to execution of arbitrary
    code or Denial of Service.

references

reference_url	http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html

reference_url	http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html

reference_url	http://lists.apple.com/archives/security-announce/2009/May/msg00000.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2009/May/msg00000.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3529.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3529.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-3529

reference_id

reference_type

scores

value	0.56626
scoring_system	epss
scoring_elements	0.98129
published_at	2026-04-21T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.98108
published_at	2026-04-01T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.9811
published_at	2026-04-02T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.98114
published_at	2026-04-04T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.98115
published_at	2026-04-07T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.98119
published_at	2026-04-08T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.9812
published_at	2026-04-09T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.98124
published_at	2026-04-12T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.98125
published_at	2026-04-13T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.98131
published_at	2026-04-16T12:55:00Z

value	0.56626
scoring_system	epss
scoring_elements	0.98133
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-3529

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3529
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3529

reference_url	http://secunia.com/advisories/31558
reference_id
reference_type
scores
url	http://secunia.com/advisories/31558

reference_url	http://secunia.com/advisories/31855
reference_id
reference_type
scores
url	http://secunia.com/advisories/31855

reference_url	http://secunia.com/advisories/31860
reference_id
reference_type
scores
url	http://secunia.com/advisories/31860

reference_url	http://secunia.com/advisories/31868
reference_id
reference_type
scores
url	http://secunia.com/advisories/31868

reference_url	http://secunia.com/advisories/31982
reference_id
reference_type
scores
url	http://secunia.com/advisories/31982

reference_url	http://secunia.com/advisories/32265
reference_id
reference_type
scores
url	http://secunia.com/advisories/32265

reference_url	http://secunia.com/advisories/32280
reference_id
reference_type
scores
url	http://secunia.com/advisories/32280

reference_url	http://secunia.com/advisories/32807
reference_id
reference_type
scores
url	http://secunia.com/advisories/32807

reference_url	http://secunia.com/advisories/32974
reference_id
reference_type
scores
url	http://secunia.com/advisories/32974

reference_url	http://secunia.com/advisories/33715
reference_id
reference_type
scores
url	http://secunia.com/advisories/33715

reference_url	http://secunia.com/advisories/33722
reference_id
reference_type
scores
url	http://secunia.com/advisories/33722

reference_url	http://secunia.com/advisories/35056
reference_id
reference_type
scores
url	http://secunia.com/advisories/35056

reference_url	http://secunia.com/advisories/35074
reference_id
reference_type
scores
url	http://secunia.com/advisories/35074

reference_url	http://secunia.com/advisories/35379
reference_id
reference_type
scores
url	http://secunia.com/advisories/35379

reference_url	http://secunia.com/advisories/36173
reference_id
reference_type
scores
url	http://secunia.com/advisories/36173

reference_url	http://secunia.com/advisories/36235
reference_id
reference_type
scores
url	http://secunia.com/advisories/36235

reference_url	http://security.gentoo.org/glsa/glsa-200812-06.xml
reference_id
reference_type
scores
url	http://security.gentoo.org/glsa/glsa-200812-06.xml

reference_url	http://securitytracker.com/id?1020855
reference_id
reference_type
scores
url	http://securitytracker.com/id?1020855

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/45085
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/45085

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11760
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11760

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6103
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6103

reference_url	http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1
reference_id
reference_type
scores
url	http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1

reference_url	http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1
reference_id
reference_type
scores
url	http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1

reference_url	http://sunsolve.sun.com/search/document.do?assetkey=1-26-247346-1
reference_id
reference_type
scores
url	http://sunsolve.sun.com/search/document.do?assetkey=1-26-247346-1

reference_url	http://sunsolve.sun.com/search/document.do?assetkey=1-66-261688-1
reference_id
reference_type
scores
url	http://sunsolve.sun.com/search/document.do?assetkey=1-66-261688-1

reference_url	http://sunsolve.sun.com/search/document.do?assetkey=1-66-265329-1
reference_id
reference_type
scores
url	http://sunsolve.sun.com/search/document.do?assetkey=1-66-265329-1

reference_url	http://support.apple.com/kb/HT3549
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT3549

reference_url	http://support.apple.com/kb/HT3550
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT3550

reference_url	http://support.apple.com/kb/HT3613
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT3613

reference_url	http://support.apple.com/kb/HT3639
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT3639

reference_url	http://support.avaya.com/elmodocs2/security/ASA-2008-400.htm
reference_id
reference_type
scores
url	http://support.avaya.com/elmodocs2/security/ASA-2008-400.htm

reference_url	http://support.avaya.com/elmodocs2/security/ASA-2009-025.htm
reference_id
reference_type
scores
url	http://support.avaya.com/elmodocs2/security/ASA-2009-025.htm

reference_url	https://www.exploit-db.com/exploits/8798
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/8798

reference_url	http://wiki.rpath.com/Advisories:rPSA-2008-0325
reference_id
reference_type
scores
url	http://wiki.rpath.com/Advisories:rPSA-2008-0325

reference_url	http://www.debian.org/security/2008/dsa-1654
reference_id
reference_type
scores
url	http://www.debian.org/security/2008/dsa-1654

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2008:192
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2008:192

reference_url	http://www.redhat.com/support/errata/RHSA-2008-0884.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2008-0884.html

reference_url	http://www.redhat.com/support/errata/RHSA-2008-0886.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2008-0886.html

reference_url	http://www.securityfocus.com/bid/31126
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/31126

reference_url	http://www.ubuntu.com/usn/USN-815-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-815-1

reference_url	http://www.us-cert.gov/cas/techalerts/TA09-133A.html
reference_id
reference_type
scores
url	http://www.us-cert.gov/cas/techalerts/TA09-133A.html

reference_url	http://www.vupen.com/english/advisories/2008/2822
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/2822

reference_url	http://www.vupen.com/english/advisories/2009/1297
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/1297

reference_url	http://www.vupen.com/english/advisories/2009/1298
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/1298

reference_url	http://www.vupen.com/english/advisories/2009/1522
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/1522

reference_url	http://www.vupen.com/english/advisories/2009/1621
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/1621

reference_url	http://xmlsoft.org/news.html
reference_id
reference_type
scores
url	http://xmlsoft.org/news.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=461015
reference_id	461015
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=461015

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=498768
reference_id	498768
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=498768

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:safari::::::::
reference_id	cpe:2.3:a:apple:safari::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:safari::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxml2::::::::
reference_id	cpe:2.3:a:xmlsoft:libxml2::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxml2::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os::::::::
reference_id	cpe:2.3:o:apple:iphone_os::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x::::::::
reference_id	cpe:2.3:o:apple:mac_os_x::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.5.7:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x:10.5.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.5.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:6.06::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:7.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:7.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04::::-:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:8.04::::-:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04::::-:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:8.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:8.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:4.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:4.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-3529

reference_id

CVE-2008-3529

reference_type

scores

value	10.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2008-3529

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/8798.rb
reference_id	CVE-2008-3529;OSVDB-48158
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/8798.rb

reference_url	https://security.gentoo.org/glsa/200812-06
reference_id	GLSA-200812-06
reference_type
scores
url	https://security.gentoo.org/glsa/200812-06

reference_url	https://access.redhat.com/errata/RHSA-2008:0884
reference_id	RHSA-2008:0884
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0884

reference_url	https://access.redhat.com/errata/RHSA-2008:0886
reference_id	RHSA-2008:0886
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0886

reference_url	https://usn.ubuntu.com/644-1/
reference_id	USN-644-1
reference_type
scores
url	https://usn.ubuntu.com/644-1/

reference_url	https://usn.ubuntu.com/815-1/
reference_id	USN-815-1
reference_type
scores
url	https://usn.ubuntu.com/815-1/

fixed_packages

aliases

CVE-2008-3529

risk_score

10.0

exploitability

2.0

weighted_severity

9.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-frd7-r2rj-s7c7

url VCID-ktns-w8gx-nqeq

vulnerability_id VCID-ktns-w8gx-nqeq

summary libxml2: billion laughs DoS attack

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-1564.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-1564.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2003-1564

reference_id

reference_type

scores

value	0.00593
scoring_system	epss
scoring_elements	0.69281
published_at	2026-04-21T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70672
published_at	2026-04-02T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70691
published_at	2026-04-04T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70668
published_at	2026-04-07T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70713
published_at	2026-04-08T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70729
published_at	2026-04-09T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70657
published_at	2026-04-01T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70735
published_at	2026-04-12T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.7072
published_at	2026-04-13T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70764
published_at	2026-04-16T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70771
published_at	2026-04-18T12:55:00Z

value	0.00646
scoring_system	epss
scoring_elements	0.70752
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2003-1564

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=461107
reference_id	461107
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=461107

reference_url	https://access.redhat.com/errata/RHSA-2008:0886
reference_id	RHSA-2008:0886
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0886

fixed_packages

aliases CVE-2003-1564

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ktns-w8gx-nqeq

Fixing_vulnerabilities

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libxml2@2.4.19-11%3Farch=ent

Package Instance