Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community

Type apk

Namespace alpine

Name exiv2

Version 0.27.2-r0

Qualifiers

arch	armv7
distroversion	v3.18
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version 0.27.2-r2

Latest_non_vulnerable_version 0.27.5-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1da7-wda3-queu

vulnerability_id VCID-1da7-wda3-queu

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-13109

reference_id

reference_type

scores

value	0.00414
scoring_system	epss
scoring_elements	0.61837
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-13109

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

fixed_packages

url	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
purl	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/exiv2@0.27.2-r0%3Farch=armv7&distroversion=v3.18&reponame=community

aliases CVE-2019-13109

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1da7-wda3-queu

url VCID-2pcy-h1za-fqan

vulnerability_id VCID-2pcy-h1za-fqan

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-13112

reference_id

reference_type

scores

value	0.01754
scoring_system	epss
scoring_elements	0.82893
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-13112

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

fixed_packages

url	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
purl	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/exiv2@0.27.2-r0%3Farch=armv7&distroversion=v3.18&reponame=community

aliases CVE-2019-13112

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2pcy-h1za-fqan

url VCID-emda-3cut-ufft

vulnerability_id VCID-emda-3cut-ufft

summary http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service (crash due to a NULL pointer dereference) by returning a crafted response that lacks a space character.

references

reference_url

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-13114

reference_id

reference_type

scores

value	0.02667
scoring_system	epss
scoring_elements	0.8606
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-13114

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/Exiv2/exiv2/issues/793

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://github.com/Exiv2/exiv2/issues/793

reference_url

https://github.com/Exiv2/exiv2/pull/815

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://github.com/Exiv2/exiv2/pull/815

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00004.html

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00004.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FGBT5OD2TF4AIXJUC56WOUJRHAZLZ4DC/

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FGBT5OD2TF4AIXJUC56WOUJRHAZLZ4DC/

reference_url

https://support.f5.com/csp/article/K45429077?utm_source=f5support&amp%3Butm_medium=RSS

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://support.f5.com/csp/article/K45429077?utm_source=f5support&amp%3Butm_medium=RSS

reference_url

https://usn.ubuntu.com/4056-1/

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://usn.ubuntu.com/4056-1/

fixed_packages

url	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
purl	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/exiv2@0.27.2-r0%3Farch=armv7&distroversion=v3.18&reponame=community

aliases CVE-2019-13114, PYSEC-2019-257

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-emda-3cut-ufft

url VCID-fwtr-yyg7-xkcs

vulnerability_id VCID-fwtr-yyg7-xkcs

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-13113

reference_id

reference_type

scores

value	0.00222
scoring_system	epss
scoring_elements	0.44792
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-13113

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

fixed_packages

url	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
purl	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/exiv2@0.27.2-r0%3Farch=armv7&distroversion=v3.18&reponame=community

aliases CVE-2019-13113

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fwtr-yyg7-xkcs

url VCID-mjeh-k2rm-rqb7

vulnerability_id VCID-mjeh-k2rm-rqb7

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-13111

reference_id

reference_type

scores

value	0.00284
scoring_system	epss
scoring_elements	0.52045
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-13111

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

fixed_packages

url	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
purl	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/exiv2@0.27.2-r0%3Farch=armv7&distroversion=v3.18&reponame=community

aliases CVE-2019-13111

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mjeh-k2rm-rqb7

url VCID-xy57-p93q-suem

vulnerability_id VCID-xy57-p93q-suem

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-13108

reference_id

reference_type

scores

value	0.00279
scoring_system	epss
scoring_elements	0.51533
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-13108

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

fixed_packages

url	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
purl	pkg:apk/alpine/exiv2@0.27.2-r0?arch=armv7&distroversion=v3.18&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/exiv2@0.27.2-r0%3Farch=armv7&distroversion=v3.18&reponame=community

aliases CVE-2019-13108

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xy57-p93q-suem

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/exiv2@0.27.2-r0%3Farch=armv7&distroversion=v3.18&reponame=community

Package Instance