Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:nuget/pcre.symbols@8.36.0

Type nuget

Namespace

Name pcre.symbols

Version 8.36.0

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-jkr1-gvjw-wkcx

vulnerability_id

VCID-jkr1-gvjw-wkcx

summary

Improper Restriction of Operations within the Bounds of a Memory Buffer
Heap-based buffer overflow in PCRE and PCRE2 allows remote attackers to execute arbitrary code via a crafted regular expression.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3210.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3210.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3210

reference_id

reference_type

scores

value	0.0573
scoring_system	epss
scoring_elements	0.90401
published_at	2026-04-01T12:55:00Z

value	0.0573
scoring_system	epss
scoring_elements	0.90404
published_at	2026-04-02T12:55:00Z

value	0.0573
scoring_system	epss
scoring_elements	0.90416
published_at	2026-04-04T12:55:00Z

value	0.0573
scoring_system	epss
scoring_elements	0.9042
published_at	2026-04-07T12:55:00Z

value	0.0573
scoring_system	epss
scoring_elements	0.90434
published_at	2026-04-08T12:55:00Z

value	0.0573
scoring_system	epss
scoring_elements	0.9044
published_at	2026-04-13T12:55:00Z

value	0.0573
scoring_system	epss
scoring_elements	0.90448
published_at	2026-04-12T12:55:00Z

value	0.0573
scoring_system	epss
scoring_elements	0.90456
published_at	2026-04-18T12:55:00Z

value	0.0573
scoring_system	epss
scoring_elements	0.90453
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3210

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3210
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3210

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1287623
reference_id	1287623
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1287623

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=787433
reference_id	787433
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=787433

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2015-3210
reference_id	CVE-2015-3210
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2015-3210

reference_url	https://access.redhat.com/errata/RHSA-2016:1132
reference_id	RHSA-2016:1132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1132

reference_url	https://access.redhat.com/errata/RHSA-2016:2750
reference_id	RHSA-2016:2750
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2750

reference_url	https://usn.ubuntu.com/2694-1/
reference_id	USN-2694-1
reference_type
scores
url	https://usn.ubuntu.com/2694-1/

reference_url	https://usn.ubuntu.com/2943-1/
reference_id	USN-2943-1
reference_type
scores
url	https://usn.ubuntu.com/2943-1/

fixed_packages

aliases

CVE-2015-3210

risk_score

0.1

exploitability

0.5

weighted_severity

0.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-jkr1-gvjw-wkcx

url VCID-pejf-33ba-h3c1

vulnerability_id VCID-pejf-33ba-h3c1

summary

Improper Restriction of Operations within the Bounds of a Memory Buffer
PCRE, and PCRE2 mishandle group empty matches, which might allow remote attackers to cause a denial of service (stack-based buffer overflow) via a crafted regular expression.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3217.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3217.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3217

reference_id

reference_type

scores

value	0.00861
scoring_system	epss
scoring_elements	0.75005
published_at	2026-04-01T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75008
published_at	2026-04-02T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75037
published_at	2026-04-04T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75013
published_at	2026-04-07T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75047
published_at	2026-04-08T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75059
published_at	2026-04-09T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75081
published_at	2026-04-11T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.7506
published_at	2026-04-12T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75049
published_at	2026-04-13T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75087
published_at	2026-04-16T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75094
published_at	2026-04-18T12:55:00Z

value	0.00861
scoring_system	epss
scoring_elements	0.75084
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3217

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3217
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3217

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1228283
reference_id	1228283
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1228283

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=787641
reference_id	787641
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=787641

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2015-3217
reference_id	CVE-2015-3217
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2015-3217

reference_url	https://access.redhat.com/errata/RHSA-2016:1025
reference_id	RHSA-2016:1025
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1025

reference_url	https://access.redhat.com/errata/RHSA-2016:1132
reference_id	RHSA-2016:1132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1132

reference_url	https://access.redhat.com/errata/RHSA-2016:2750
reference_id	RHSA-2016:2750
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2750

fixed_packages

aliases CVE-2015-3217

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pejf-33ba-h3c1

Fixing_vulnerabilities

Risk_score 0.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/pcre.symbols@8.36.0

Package Instance