Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/kube-proxy@1.23.0-1
Typealpm
Namespacearchlinux
Namekube-proxy
Version1.23.0-1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-4qqj-251q-ykek
vulnerability_id VCID-4qqj-251q-ykek
summary 
Confused Deputy in Kubernetes
A security issue was discovered with Kubernetes that could enable users to send network traffic to locations they would otherwise not have access to via a confused deputy attack.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25740.json
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25740.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-25740
reference_id
reference_type
scores
0
value 0.00519
scoring_system epss
scoring_elements 0.66824
published_at 2026-04-21T12:55:00Z
1
value 0.00519
scoring_system epss
scoring_elements 0.66849
published_at 2026-04-24T12:55:00Z
2
value 0.00685
scoring_system epss
scoring_elements 0.71673
published_at 2026-04-13T12:55:00Z
3
value 0.00685
scoring_system epss
scoring_elements 0.71692
published_at 2026-04-12T12:55:00Z
4
value 0.00685
scoring_system epss
scoring_elements 0.71708
published_at 2026-04-11T12:55:00Z
5
value 0.00685
scoring_system epss
scoring_elements 0.71685
published_at 2026-04-09T12:55:00Z
6
value 0.00685
scoring_system epss
scoring_elements 0.71674
published_at 2026-04-08T12:55:00Z
7
value 0.00685
scoring_system epss
scoring_elements 0.71637
published_at 2026-04-01T12:55:00Z
8
value 0.00685
scoring_system epss
scoring_elements 0.71634
published_at 2026-04-07T12:55:00Z
9
value 0.00685
scoring_system epss
scoring_elements 0.71644
published_at 2026-04-02T12:55:00Z
10
value 0.00685
scoring_system epss
scoring_elements 0.71662
published_at 2026-04-04T12:55:00Z
11
value 0.00685
scoring_system epss
scoring_elements 0.71723
published_at 2026-04-18T12:55:00Z
12
value 0.00685
scoring_system epss
scoring_elements 0.71717
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-25740
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25740
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25740
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/kubernetes/kubernetes
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes
5
reference_url https://github.com/kubernetes/kubernetes/issues/103675
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes/issues/103675
6
reference_url https://groups.google.com/g/kubernetes-security-announce/c/WYE9ptrhSLE
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://groups.google.com/g/kubernetes-security-announce/c/WYE9ptrhSLE
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-25740
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-25740
8
reference_url https://security.netapp.com/advisory/ntap-20211014-0001
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20211014-0001
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1982470
reference_id 1982470
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1982470
10
reference_url https://security.archlinux.org/AVG-1915
reference_id AVG-1915
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1915
fixed_packages
aliases CVE-2021-25740, GHSA-vw47-mr44-3jf9
risk_score 1.4
exploitability 0.5
weighted_severity 2.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4qqj-251q-ykek
1
url VCID-vu3k-upyc-x7av
vulnerability_id VCID-vu3k-upyc-x7av
summary 
Potential proxy IP restriction bypass in Kubernetes
As mitigations to a report from 2019 and CVE-2020-8555, Kubernetes attempts to prevent proxied connections from accessing link-local or localhost networks when making user-driven connections to Services, Pods, Nodes, or StorageClass service providers. As part of this mitigation Kubernetes does a DNS name resolution check and validates that response IPs are not in the link-local (169.254.0.0/16) or localhost (127.0.0.0/8) range. Kubernetes then performs a second DNS resolution without validation for the actual connection. If a non-standard DNS server returns different non-cached responses, a user may be able to bypass the proxy IP restriction and access private networks on the control plane. All versions of Kubernetes are impacted, and there is no fix in place.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8562.json
reference_id
reference_type
scores
0
value 2.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8562.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-8562
reference_id
reference_type
scores
0
value 0.00057
scoring_system epss
scoring_elements 0.1773
published_at 2026-04-24T12:55:00Z
1
value 0.00057
scoring_system epss
scoring_elements 0.17822
published_at 2026-04-21T12:55:00Z
2
value 0.00057
scoring_system epss
scoring_elements 0.17784
published_at 2026-04-18T12:55:00Z
3
value 0.00057
scoring_system epss
scoring_elements 0.17775
published_at 2026-04-16T12:55:00Z
4
value 0.00057
scoring_system epss
scoring_elements 0.17833
published_at 2026-04-13T12:55:00Z
5
value 0.00057
scoring_system epss
scoring_elements 0.17882
published_at 2026-04-12T12:55:00Z
6
value 0.00057
scoring_system epss
scoring_elements 0.17926
published_at 2026-04-11T12:55:00Z
7
value 0.00057
scoring_system epss
scoring_elements 0.1791
published_at 2026-04-09T12:55:00Z
8
value 0.00057
scoring_system epss
scoring_elements 0.1785
published_at 2026-04-08T12:55:00Z
9
value 0.00057
scoring_system epss
scoring_elements 0.17762
published_at 2026-04-07T12:55:00Z
10
value 0.00057
scoring_system epss
scoring_elements 0.18008
published_at 2026-04-02T12:55:00Z
11
value 0.00057
scoring_system epss
scoring_elements 0.17847
published_at 2026-04-01T12:55:00Z
12
value 0.00057
scoring_system epss
scoring_elements 0.18062
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-8562
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8562
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8562
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/kubernetes/kubernetes
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes
5
reference_url https://github.com/kubernetes/kubernetes/issues/101493
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes/issues/101493
6
reference_url https://github.com/kubernetes/kubernetes/issues/101493#issuecomment-2272095629
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/kubernetes/kubernetes/issues/101493#issuecomment-2272095629
7
reference_url https://groups.google.com/g/kubernetes-security-announce/c/-MFX60_wdOY
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://groups.google.com/g/kubernetes-security-announce/c/-MFX60_wdOY
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-8562
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-8562
9
reference_url https://security.netapp.com/advisory/ntap-20220225-0002
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20220225-0002
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1954914
reference_id 1954914
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1954914
11
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990793
reference_id 990793
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990793
12
reference_url https://security.archlinux.org/AVG-1915
reference_id AVG-1915
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1915
fixed_packages
aliases CVE-2020-8562, GHSA-qh36-44jv-c8xj
risk_score 1.4
exploitability 0.5
weighted_severity 2.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vu3k-upyc-x7av
Fixing_vulnerabilities
Risk_score1.4
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/kube-proxy@1.23.0-1