Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/qt6-qtwebengine@6.8.2-r4?arch=armv7&distroversion=v3.23&reponame=community
Typeapk
Namespacealpine
Nameqt6-qtwebengine
Version6.8.2-r4
Qualifiers
arch armv7
distroversion v3.23
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version6.8.3-r1
Latest_non_vulnerable_version6.10.3-r3
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-8tt9-vhee-yfa6
vulnerability_id VCID-8tt9-vhee-yfa6
summary Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 136.0.7103.113 allowed a remote attacker to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-4609
reference_id
reference_type
scores
0
value 0.00033
scoring_system epss
scoring_elements 0.10277
published_at 2026-06-13T12:55:00Z
1
value 0.00033
scoring_system epss
scoring_elements 0.10223
published_at 2026-06-11T12:55:00Z
2
value 0.00033
scoring_system epss
scoring_elements 0.10273
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-4609
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4609
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4609
2
reference_url https://issues.chromium.org/issues/412578726
reference_id 412578726
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-08-25T12:17:52Z/
url https://issues.chromium.org/issues/412578726
3
reference_url https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_14.html
reference_id stable-channel-update-for-desktop_14.html
reference_type
scores
0
value 9.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-08-25T12:17:52Z/
url https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_14.html
fixed_packages
0
url pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4?arch=armv7&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4?arch=armv7&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4%3Farch=armv7&distroversion=v3.23&reponame=community
aliases CVE-2025-4609
risk_score 2.9
exploitability 0.5
weighted_severity 5.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8tt9-vhee-yfa6
1
url VCID-cq1q-cb39-zfh9
vulnerability_id VCID-cq1q-cb39-zfh9
summary Insufficient policy enforcement in Loader in Google Chrome prior to 136.0.7103.113 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-4664
reference_id
reference_type
scores
0
value 0.00118
scoring_system epss
scoring_elements 0.30213
published_at 2026-06-11T12:55:00Z
1
value 0.00118
scoring_system epss
scoring_elements 0.30409
published_at 2026-06-12T12:55:00Z
2
value 0.00142
scoring_system epss
scoring_elements 0.34367
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-4664
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4664
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4664
2
reference_url https://issues.chromium.org/issues/415810136
reference_id 415810136
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-05T19:18:35Z/
url https://issues.chromium.org/issues/415810136
3
reference_url https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_14.html
reference_id stable-channel-update-for-desktop_14.html
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-05T19:18:35Z/
url https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_14.html
fixed_packages
0
url pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4?arch=armv7&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4?arch=armv7&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4%3Farch=armv7&distroversion=v3.23&reponame=community
aliases CVE-2025-4664
risk_score 1.3
exploitability 0.5
weighted_severity 2.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cq1q-cb39-zfh9
2
url VCID-wfcm-mmu6-kyh2
vulnerability_id VCID-wfcm-mmu6-kyh2
summary Insufficient data validation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Medium)
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-4051
reference_id
reference_type
scores
0
value 8e-05
scoring_system epss
scoring_elements 0.00841
published_at 2026-06-13T12:55:00Z
1
value 8e-05
scoring_system epss
scoring_elements 0.0084
published_at 2026-06-11T12:55:00Z
2
value 8e-05
scoring_system epss
scoring_elements 0.00836
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-4051
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4051
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4051
2
reference_url https://issues.chromium.org/issues/404000989
reference_id 404000989
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T18:54:40Z/
url https://issues.chromium.org/issues/404000989
3
reference_url https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_29.html
reference_id stable-channel-update-for-desktop_29.html
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T18:54:40Z/
url https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_29.html
fixed_packages
0
url pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4?arch=armv7&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4?arch=armv7&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4%3Farch=armv7&distroversion=v3.23&reponame=community
aliases CVE-2025-4051
risk_score 1.9
exploitability 0.5
weighted_severity 3.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wfcm-mmu6-kyh2
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/qt6-qtwebengine@6.8.2-r4%3Farch=armv7&distroversion=v3.23&reponame=community