Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:alpm/archlinux/binutils@2.35.1-1

Type alpm

Namespace archlinux

Name binutils

Version 2.35.1-1

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 2.36-1

Latest_non_vulnerable_version 2.38-1

Affected_by_vulnerabilities

url VCID-7sc8-fzw3-vfer

vulnerability_id VCID-7sc8-fzw3-vfer

summary

Multiple vulnerabilities have been found in Binutils, the worst of
    which could result in a Denial of Service condition.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35448.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35448.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-35448

reference_id

reference_type

scores

value	0.00132
scoring_system	epss
scoring_elements	0.32892
published_at	2026-04-02T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32762
published_at	2026-04-01T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32927
published_at	2026-04-04T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55608
published_at	2026-04-24T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55703
published_at	2026-04-18T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55682
published_at	2026-04-21T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55634
published_at	2026-04-07T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55686
published_at	2026-04-08T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55689
published_at	2026-04-09T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55697
published_at	2026-04-11T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55678
published_at	2026-04-12T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.5566
published_at	2026-04-13T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55699
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-35448

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35448
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35448

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1950478
reference_id	1950478
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1950478

reference_url

https://security.archlinux.org/AVG-1385

reference_id

AVG-1385

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1385

reference_url	https://security.gentoo.org/glsa/202107-24
reference_id	GLSA-202107-24
reference_type
scores
url	https://security.gentoo.org/glsa/202107-24

reference_url	https://access.redhat.com/errata/RHSA-2021:4364
reference_id	RHSA-2021:4364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4364

fixed_packages

url	pkg:alpm/archlinux/binutils@2.36-1
purl	pkg:alpm/archlinux/binutils@2.36-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/binutils@2.36-1

aliases CVE-2020-35448

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7sc8-fzw3-vfer

url VCID-vepg-jnnm-97d7

vulnerability_id VCID-vepg-jnnm-97d7

summary Multiple vulnerabilities have been discovered in Binutils, the worst of which could result in denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20294.json

reference_id

reference_type

scores

value	7.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20294.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-20294

reference_id

reference_type

scores

value	0.1586
scoring_system	epss
scoring_elements	0.9472
published_at	2026-04-02T12:55:00Z

value	0.1586
scoring_system	epss
scoring_elements	0.94712
published_at	2026-04-01T12:55:00Z

value	0.1586
scoring_system	epss
scoring_elements	0.94724
published_at	2026-04-04T12:55:00Z

value	0.22712
scoring_system	epss
scoring_elements	0.95885
published_at	2026-04-24T12:55:00Z

value	0.22712
scoring_system	epss
scoring_elements	0.95881
published_at	2026-04-18T12:55:00Z

value	0.22712
scoring_system	epss
scoring_elements	0.95883
published_at	2026-04-21T12:55:00Z

value	0.22712
scoring_system	epss
scoring_elements	0.95848
published_at	2026-04-07T12:55:00Z

value	0.22712
scoring_system	epss
scoring_elements	0.95857
published_at	2026-04-08T12:55:00Z

value	0.22712
scoring_system	epss
scoring_elements	0.9586
published_at	2026-04-09T12:55:00Z

value	0.22712
scoring_system	epss
scoring_elements	0.95863
published_at	2026-04-12T12:55:00Z

value	0.22712
scoring_system	epss
scoring_elements	0.95864
published_at	2026-04-13T12:55:00Z

value	0.22712
scoring_system	epss
scoring_elements	0.95876
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-20294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20294

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1943533
reference_id	1943533
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1943533

reference_url

https://security.archlinux.org/AVG-1385

reference_id

AVG-1385

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1385

reference_url	https://security.gentoo.org/glsa/202208-30
reference_id	GLSA-202208-30
reference_type
scores
url	https://security.gentoo.org/glsa/202208-30

fixed_packages

url	pkg:alpm/archlinux/binutils@2.36-1
purl	pkg:alpm/archlinux/binutils@2.36-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/binutils@2.36-1

aliases CVE-2021-20294

risk_score 3.1

exploitability 0.5

weighted_severity 6.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vepg-jnnm-97d7

url VCID-xrpd-jdfr-ebeq

vulnerability_id VCID-xrpd-jdfr-ebeq

summary Multiple vulnerabilities have been discovered in Binutils, the worst of which could result in denial of service.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3487.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3487.json

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1947111
reference_id	1947111
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1947111

reference_url

https://security.archlinux.org/AVG-1385

reference_id

AVG-1385

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1385

reference_url	https://security.gentoo.org/glsa/202208-30
reference_id	GLSA-202208-30
reference_type
scores
url	https://security.gentoo.org/glsa/202208-30

reference_url	https://access.redhat.com/errata/RHSA-2021:4364
reference_id	RHSA-2021:4364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4364

reference_url	https://usn.ubuntu.com/5124-1/
reference_id	USN-5124-1
reference_type
scores
url	https://usn.ubuntu.com/5124-1/

reference_url	https://usn.ubuntu.com/5341-1/
reference_id	USN-5341-1
reference_type
scores
url	https://usn.ubuntu.com/5341-1/

fixed_packages

url	pkg:alpm/archlinux/binutils@2.36-1
purl	pkg:alpm/archlinux/binutils@2.36-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/binutils@2.36-1

aliases CVE-2021-3487

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xrpd-jdfr-ebeq

Fixing_vulnerabilities

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/binutils@2.35.1-1

Package Instance