Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/clamav@0.97.8%2Bdfsg-1?distro=trixie

Type deb

Namespace debian

Name clamav

Version 0.97.8+dfsg-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 0.98.5+dfsg-1

Latest_non_vulnerable_version 1.4.4+dfsg-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-a9r8-chep-nkgn

vulnerability_id VCID-a9r8-chep-nkgn

summary pdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted length value in an encrypted PDF file.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-2021

reference_id

reference_type

scores

value	0.08669
scoring_system	epss
scoring_elements	0.92585
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-2021

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2021
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2021

reference_url	https://security.gentoo.org/glsa/201405-08
reference_id	GLSA-201405-08
reference_type
scores
url	https://security.gentoo.org/glsa/201405-08

reference_url	https://usn.ubuntu.com/1816-1/
reference_id	USN-1816-1
reference_type
scores
url	https://usn.ubuntu.com/1816-1/

fixed_packages

url	pkg:deb/debian/clamav@0.97.8%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/clamav@0.97.8%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.97.8%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81rs-8fs7-3yfp

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2?distro=trixie

purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81rs-8fs7-3yfp

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1~deb12u2%3Fdistro=trixie

url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81rs-8fs7-3yfp

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1%3Fdistro=trixie

url	pkg:deb/debian/clamav@1.4.4%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/clamav@1.4.4%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.4%252Bdfsg-1%3Fdistro=trixie

aliases CVE-2013-2021

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a9r8-chep-nkgn

url VCID-ypf8-kvuk-tudq

vulnerability_id VCID-ypf8-kvuk-tudq

summary Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-2020

reference_id

reference_type

scores

value	0.07722
scoring_system	epss
scoring_elements	0.92049
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-2020

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2020
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2020

reference_url	https://security.gentoo.org/glsa/201405-08
reference_id	GLSA-201405-08
reference_type
scores
url	https://security.gentoo.org/glsa/201405-08

reference_url	https://usn.ubuntu.com/1816-1/
reference_id	USN-1816-1
reference_type
scores
url	https://usn.ubuntu.com/1816-1/

fixed_packages

url	pkg:deb/debian/clamav@0.97.8%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/clamav@0.97.8%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.97.8%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81rs-8fs7-3yfp

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2?distro=trixie

purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81rs-8fs7-3yfp

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1~deb12u2%3Fdistro=trixie

url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81rs-8fs7-3yfp

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1%3Fdistro=trixie

url	pkg:deb/debian/clamav@1.4.4%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/clamav@1.4.4%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.4%252Bdfsg-1%3Fdistro=trixie

aliases CVE-2013-2020

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ypf8-kvuk-tudq

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.97.8%252Bdfsg-1%3Fdistro=trixie

Package Instance