Django REST framework
Api Root
Package List
Package Instance
Format
json
api
admin
Package Instance
Lookup for vulnerable packages by Package URL.
Purl
pkg:pypi/pytorch-lightning@0.3.5
Type
pypi
Namespace
Name
pytorch-lightning
Version
0.3.5
Qualifiers
Subpath
Is_vulnerable
true
Next_non_vulnerable_version
1.6.0
Latest_non_vulnerable_version
1.6.0
Affected_by_vulnerabilities
0
url
VCID-kpjs-y2wd-kfgf
vulnerability_id
VCID-kpjs-y2wd-kfgf
summary
pytorch-lightning is vulnerable to Deserialization of Untrusted Data
references
0
reference_url
https://github.com/advisories/GHSA-2vj5-px25-gjrp
reference_id
reference_type
scores
url
https://github.com/advisories/GHSA-2vj5-px25-gjrp
1
reference_url
https://github.com/pypa/advisory-database/tree/main/vulns/pytorch-lightning/PYSEC-2021-874.yaml
reference_id
reference_type
scores
url
https://github.com/pypa/advisory-database/tree/main/vulns/pytorch-lightning/PYSEC-2021-874.yaml
2
reference_url
https://github.com/pytorchlightning/pytorch-lightning
reference_id
reference_type
scores
url
https://github.com/pytorchlightning/pytorch-lightning
3
reference_url
https://github.com/pytorchlightning/pytorch-lightning/commit/62f1e82e032eb16565e676d39e0db0cac7e34ace
reference_id
reference_type
scores
url
https://github.com/pytorchlightning/pytorch-lightning/commit/62f1e82e032eb16565e676d39e0db0cac7e34ace
4
reference_url
https://github.com/PyTorchLightning/pytorch-lightning/issues/11045
reference_id
reference_type
scores
url
https://github.com/PyTorchLightning/pytorch-lightning/issues/11045
5
reference_url
https://github.com/PyTorchLightning/pytorch-lightning/pull/11099
reference_id
reference_type
scores
url
https://github.com/PyTorchLightning/pytorch-lightning/pull/11099
6
reference_url
https://github.com/PyTorchLightning/pytorch-lightning/releases/tag/1.6.0
reference_id
reference_type
scores
url
https://github.com/PyTorchLightning/pytorch-lightning/releases/tag/1.6.0
7
reference_url
https://huntr.dev/bounties/31832f0c-e5bb-4552-a12c-542f81f111e6
reference_id
reference_type
scores
url
https://huntr.dev/bounties/31832f0c-e5bb-4552-a12c-542f81f111e6
8
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2021-4118
reference_id
CVE-2021-4118
reference_type
scores
url
https://nvd.nist.gov/vuln/detail/CVE-2021-4118
fixed_packages
0
url
pkg:pypi/pytorch-lightning@1.6.0
purl
pkg:pypi/pytorch-lightning@1.6.0
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/pytorch-lightning@1.6.0
aliases
CVE-2021-4118, GHSA-2vj5-px25-gjrp, PYSEC-2021-874
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-kpjs-y2wd-kfgf
1
url
VCID-z7cb-qxfa-efa7
vulnerability_id
VCID-z7cb-qxfa-efa7
summary
Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0.
references
0
reference_url
https://github.com/advisories/GHSA-r5qj-cvf9-p85h
reference_id
reference_type
scores
url
https://github.com/advisories/GHSA-r5qj-cvf9-p85h
1
reference_url
https://github.com/pypa/advisory-database/tree/main/vulns/pytorch-lightning/PYSEC-2022-181.yaml
reference_id
reference_type
scores
url
https://github.com/pypa/advisory-database/tree/main/vulns/pytorch-lightning/PYSEC-2022-181.yaml
2
reference_url
https://github.com/pytorchlightning/pytorch-lightning
reference_id
reference_type
scores
url
https://github.com/pytorchlightning/pytorch-lightning
3
reference_url
https://github.com/pytorchlightning/pytorch-lightning/commit/8b7a12c52e52a06408e9231647839ddb4665e8ae
reference_id
reference_type
scores
url
https://github.com/pytorchlightning/pytorch-lightning/commit/8b7a12c52e52a06408e9231647839ddb4665e8ae
4
reference_url
https://github.com/PyTorchLightning/pytorch-lightning/pull/12212
reference_id
reference_type
scores
url
https://github.com/PyTorchLightning/pytorch-lightning/pull/12212
5
reference_url
https://huntr.dev/bounties/a795bf93-c91e-4c79-aae8-f7d8bda92e2a
reference_id
reference_type
scores
url
https://huntr.dev/bounties/a795bf93-c91e-4c79-aae8-f7d8bda92e2a
6
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2022-0845
reference_id
CVE-2022-0845
reference_type
scores
url
https://nvd.nist.gov/vuln/detail/CVE-2022-0845
fixed_packages
0
url
pkg:pypi/pytorch-lightning@1.6.0
purl
pkg:pypi/pytorch-lightning@1.6.0
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/pytorch-lightning@1.6.0
aliases
CVE-2022-0845, GHSA-r5qj-cvf9-p85h, PYSEC-2022-181
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-z7cb-qxfa-efa7
Fixing_vulnerabilities
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/pytorch-lightning@0.3.5
×
Create
None
×
Edit
None