Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/mbedtls@2.25.0-1
Typealpm
Namespacearchlinux
Namembedtls
Version2.25.0-1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.26.0-1
Latest_non_vulnerable_version2.26.0-1
Affected_by_vulnerabilities
0
url VCID-8vmc-tp28-wyae
vulnerability_id VCID-8vmc-tp28-wyae
summary In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator) attackers to obtain information about secret RSA keys via a controlled-channel and side-channel attack on software running in isolated environments that can be single stepped, especially Intel SGX.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-24119
reference_id
reference_type
scores
0
value 0.00677
scoring_system epss
scoring_elements 0.71535
published_at 2026-04-21T12:55:00Z
1
value 0.00677
scoring_system epss
scoring_elements 0.71468
published_at 2026-04-01T12:55:00Z
2
value 0.00677
scoring_system epss
scoring_elements 0.71475
published_at 2026-04-02T12:55:00Z
3
value 0.00677
scoring_system epss
scoring_elements 0.71492
published_at 2026-04-04T12:55:00Z
4
value 0.00677
scoring_system epss
scoring_elements 0.71464
published_at 2026-04-07T12:55:00Z
5
value 0.00677
scoring_system epss
scoring_elements 0.71505
published_at 2026-04-08T12:55:00Z
6
value 0.00677
scoring_system epss
scoring_elements 0.71517
published_at 2026-04-09T12:55:00Z
7
value 0.00677
scoring_system epss
scoring_elements 0.71539
published_at 2026-04-11T12:55:00Z
8
value 0.00677
scoring_system epss
scoring_elements 0.71524
published_at 2026-04-12T12:55:00Z
9
value 0.00677
scoring_system epss
scoring_elements 0.71506
published_at 2026-04-13T12:55:00Z
10
value 0.00677
scoring_system epss
scoring_elements 0.71552
published_at 2026-04-16T12:55:00Z
11
value 0.00677
scoring_system epss
scoring_elements 0.71557
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-24119
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24119
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24119
2
reference_url https://security.archlinux.org/ASA-202107-27
reference_id ASA-202107-27
reference_type
scores
url https://security.archlinux.org/ASA-202107-27
3
reference_url https://security.archlinux.org/AVG-2153
reference_id AVG-2153
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2153
fixed_packages
0
url pkg:alpm/archlinux/mbedtls@2.26.0-1
purl pkg:alpm/archlinux/mbedtls@2.26.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mbedtls@2.26.0-1
aliases CVE-2021-24119
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8vmc-tp28-wyae
Fixing_vulnerabilities
0
url VCID-ewrv-m6gm-y7hc
vulnerability_id VCID-ewrv-m6gm-y7hc
summary Multiple vulnerabilities have been discovered in Mbed TLS, the worst of which could result in arbitrary code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-16150
reference_id
reference_type
scores
0
value 0.00077
scoring_system epss
scoring_elements 0.22867
published_at 2026-04-01T12:55:00Z
1
value 0.00077
scoring_system epss
scoring_elements 0.22994
published_at 2026-04-09T12:55:00Z
2
value 0.00077
scoring_system epss
scoring_elements 0.23012
published_at 2026-04-11T12:55:00Z
3
value 0.00077
scoring_system epss
scoring_elements 0.22976
published_at 2026-04-12T12:55:00Z
4
value 0.00077
scoring_system epss
scoring_elements 0.2292
published_at 2026-04-13T12:55:00Z
5
value 0.00077
scoring_system epss
scoring_elements 0.23036
published_at 2026-04-02T12:55:00Z
6
value 0.00077
scoring_system epss
scoring_elements 0.23081
published_at 2026-04-04T12:55:00Z
7
value 0.00077
scoring_system epss
scoring_elements 0.2287
published_at 2026-04-07T12:55:00Z
8
value 0.00077
scoring_system epss
scoring_elements 0.22942
published_at 2026-04-08T12:55:00Z
9
value 0.00078
scoring_system epss
scoring_elements 0.23107
published_at 2026-04-18T12:55:00Z
10
value 0.00078
scoring_system epss
scoring_elements 0.2307
published_at 2026-04-21T12:55:00Z
11
value 0.00078
scoring_system epss
scoring_elements 0.23115
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-16150
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16150
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16150
2
reference_url https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2020-09-1
reference_id
reference_type
scores
url https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2020-09-1
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972806
reference_id 972806
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972806
4
reference_url https://security.archlinux.org/ASA-202101-7
reference_id ASA-202101-7
reference_type
scores
url https://security.archlinux.org/ASA-202101-7
5
reference_url https://security.archlinux.org/AVG-1386
reference_id AVG-1386
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1386
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-16150
reference_id CVE-2020-16150
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2020-16150
7
reference_url https://security.gentoo.org/glsa/202301-08
reference_id GLSA-202301-08
reference_type
scores
url https://security.gentoo.org/glsa/202301-08
fixed_packages
0
url pkg:alpm/archlinux/mbedtls@2.25.0-1
purl pkg:alpm/archlinux/mbedtls@2.25.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8vmc-tp28-wyae
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mbedtls@2.25.0-1
aliases CVE-2020-16150
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ewrv-m6gm-y7hc
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mbedtls@2.25.0-1