Django REST framework
Api Root
Package List
Package Instance
Format
json
api
admin
Package Instance
Lookup for vulnerable packages by Package URL.
Purl
pkg:deb/debian/tidy-html5@2:5.6.0-11?distro=trixie
Type
deb
Namespace
debian
Name
tidy-html5
Version
2:5.6.0-11
Qualifiers
distro
trixie
Subpath
Is_vulnerable
true
Next_non_vulnerable_version
2:5.8.0-2
Latest_non_vulnerable_version
2:5.8.0-2.1
Affected_by_vulnerabilities
0
url
VCID-jnhf-93hz-byhe
vulnerability_id
VCID-jnhf-93hz-byhe
summary
An issue in HTACG HTML Tidy v5.7.28 allows attacker to execute arbitrary code via the -g option of the CleanNode() function in gdoc.c.
references
0
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2021-33391
reference_id
reference_type
scores
0
value
0.0043
scoring_system
epss
scoring_elements
0.62831
published_at
2026-05-29T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2021-33391
1
reference_url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33391
reference_id
reference_type
scores
url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33391
2
reference_url
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032665
reference_id
1032665
reference_type
scores
url
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032665
3
reference_url
https://github.com/htacg/tidy-html5/issues/946
reference_id
946
reference_type
scores
0
value
9.8
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value
Track*
scoring_system
ssvc
scoring_elements
SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-18T19:03:42Z/
url
https://github.com/htacg/tidy-html5/issues/946
4
reference_url
https://usn.ubuntu.com/6483-1/
reference_id
USN-6483-1
reference_type
scores
url
https://usn.ubuntu.com/6483-1/
fixed_packages
0
url
pkg:deb/debian/tidy-html5@2:5.8.0-2?distro=trixie
purl
pkg:deb/debian/tidy-html5@2:5.8.0-2?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.8.0-2%3Fdistro=trixie
1
url
pkg:deb/debian/tidy-html5@2:5.8.0-2.1?distro=trixie
purl
pkg:deb/debian/tidy-html5@2:5.8.0-2.1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.8.0-2.1%3Fdistro=trixie
aliases
CVE-2021-33391
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-jnhf-93hz-byhe
Fixing_vulnerabilities
0
url
VCID-2fy8-e6d4-jqba
vulnerability_id
VCID-2fy8-e6d4-jqba
summary
tidy: Segmentation fault in the prvTidyTidyMetaCharset function
references
0
reference_url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17497.json
reference_id
reference_type
scores
0
value
3.3
scoring_system
cvssv3
scoring_elements
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17497.json
1
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2017-17497
reference_id
reference_type
scores
0
value
0.00274
scoring_system
epss
scoring_elements
0.51037
published_at
2026-05-29T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2017-17497
2
reference_url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17497
reference_id
reference_type
scores
url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17497
3
reference_url
https://bugzilla.redhat.com/show_bug.cgi?id=1524567
reference_id
1524567
reference_type
scores
url
https://bugzilla.redhat.com/show_bug.cgi?id=1524567
fixed_packages
0
url
pkg:deb/debian/tidy-html5@2:5.6.0-3?distro=trixie
purl
pkg:deb/debian/tidy-html5@2:5.6.0-3?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.6.0-3%3Fdistro=trixie
1
url
pkg:deb/debian/tidy-html5@2:5.6.0-11?distro=trixie
purl
pkg:deb/debian/tidy-html5@2:5.6.0-11?distro=trixie
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-jnhf-93hz-byhe
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.6.0-11%3Fdistro=trixie
2
url
pkg:deb/debian/tidy-html5@2:5.8.0-2?distro=trixie
purl
pkg:deb/debian/tidy-html5@2:5.8.0-2?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.8.0-2%3Fdistro=trixie
3
url
pkg:deb/debian/tidy-html5@2:5.8.0-2.1?distro=trixie
purl
pkg:deb/debian/tidy-html5@2:5.8.0-2.1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.8.0-2.1%3Fdistro=trixie
aliases
CVE-2017-17497
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-2fy8-e6d4-jqba
1
url
VCID-95br-mmyr-sudq
vulnerability_id
VCID-95br-mmyr-sudq
summary
tidy: Segfault due to out-of-bounds read in ISURLCodePoint function
references
0
reference_url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13692.json
reference_id
reference_type
scores
0
value
3.3
scoring_system
cvssv3
scoring_elements
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13692.json
1
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2017-13692
reference_id
reference_type
scores
0
value
0.00257
scoring_system
epss
scoring_elements
0.49255
published_at
2026-05-29T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2017-13692
2
reference_url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value
2.1
scoring_system
cvssv2
scoring_elements
AV:L/AC:L/Au:N/C:N/I:N/A:P
1
value
4
scoring_system
cvssv3
scoring_elements
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url
https://bugzilla.redhat.com/show_bug.cgi?id=1485857
reference_id
1485857
reference_type
scores
url
https://bugzilla.redhat.com/show_bug.cgi?id=1485857
fixed_packages
0
url
pkg:deb/debian/tidy-html5@0?distro=trixie
purl
pkg:deb/debian/tidy-html5@0?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@0%3Fdistro=trixie
1
url
pkg:deb/debian/tidy-html5@2:5.6.0-11?distro=trixie
purl
pkg:deb/debian/tidy-html5@2:5.6.0-11?distro=trixie
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-jnhf-93hz-byhe
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.6.0-11%3Fdistro=trixie
2
url
pkg:deb/debian/tidy-html5@2:5.8.0-2?distro=trixie
purl
pkg:deb/debian/tidy-html5@2:5.8.0-2?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.8.0-2%3Fdistro=trixie
3
url
pkg:deb/debian/tidy-html5@2:5.8.0-2.1?distro=trixie
purl
pkg:deb/debian/tidy-html5@2:5.8.0-2.1?distro=trixie
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.8.0-2.1%3Fdistro=trixie
aliases
CVE-2017-13692
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-95br-mmyr-sudq
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/packages/pkg:deb/debian/tidy-html5@2:5.6.0-11%3Fdistro=trixie
×
Create
None
×
Edit
None