Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:nuget/Microsoft.AspNetCore.All@5.0.0
Typenuget
Namespace
NameMicrosoft.AspNetCore.All
Version5.0.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-aqyy-zs6z-v7ar
vulnerability_id VCID-aqyy-zs6z-v7ar
summary 
Exposure of Sensitive Information to an Unauthorized Actor
The type of information that could be disclosed if an attacker successfully exploited this vulnerability is data inside the targeted website like IDs, tokens, nonces, and other sensitive information.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34532.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34532.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-34532
reference_id
reference_type
scores
0
value 0.00266
scoring_system epss
scoring_elements 0.50115
published_at 2026-04-18T12:55:00Z
1
value 0.00266
scoring_system epss
scoring_elements 0.50114
published_at 2026-04-16T12:55:00Z
2
value 0.00266
scoring_system epss
scoring_elements 0.50083
published_at 2026-04-09T12:55:00Z
3
value 0.00266
scoring_system epss
scoring_elements 0.50074
published_at 2026-04-12T12:55:00Z
4
value 0.00266
scoring_system epss
scoring_elements 0.501
published_at 2026-04-11T12:55:00Z
5
value 0.00266
scoring_system epss
scoring_elements 0.5007
published_at 2026-04-13T12:55:00Z
6
value 0.0029
scoring_system epss
scoring_elements 0.52373
published_at 2026-04-02T12:55:00Z
7
value 0.0029
scoring_system epss
scoring_elements 0.52366
published_at 2026-04-07T12:55:00Z
8
value 0.0029
scoring_system epss
scoring_elements 0.52401
published_at 2026-04-04T12:55:00Z
9
value 0.0029
scoring_system epss
scoring_elements 0.52328
published_at 2026-04-01T12:55:00Z
10
value 0.0029
scoring_system epss
scoring_elements 0.52419
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-34532
2
reference_url https://github.com/dotnet/announcements/issues/195
reference_id
reference_type
scores
url https://github.com/dotnet/announcements/issues/195
3
reference_url https://github.com/dotnet/aspnetcore
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/aspnetcore
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1990300
reference_id 1990300
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1990300
5
reference_url https://security.archlinux.org/AVG-2277
reference_id AVG-2277
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2277
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-34532
reference_id CVE-2021-34532
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-34532
7
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532
reference_id CVE-2021-34532
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532
8
reference_url https://github.com/advisories/GHSA-q7cg-43mg-qp69
reference_id GHSA-q7cg-43mg-qp69
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-q7cg-43mg-qp69
9
reference_url https://github.com/dotnet/aspnetcore/security/advisories/GHSA-q7cg-43mg-qp69
reference_id GHSA-q7cg-43mg-qp69
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/aspnetcore/security/advisories/GHSA-q7cg-43mg-qp69
10
reference_url https://access.redhat.com/errata/RHSA-2021:3142
reference_id RHSA-2021:3142
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3142
11
reference_url https://access.redhat.com/errata/RHSA-2021:3143
reference_id RHSA-2021:3143
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3143
12
reference_url https://access.redhat.com/errata/RHSA-2021:3147
reference_id RHSA-2021:3147
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3147
13
reference_url https://access.redhat.com/errata/RHSA-2021:3148
reference_id RHSA-2021:3148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3148
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@5.0.9
purl pkg:nuget/Microsoft.AspNetCore.All@5.0.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@5.0.9
aliases CVE-2021-34532, GHSA-q7cg-43mg-qp69
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aqyy-zs6z-v7ar
1
url VCID-caba-95ag-9yf8
vulnerability_id VCID-caba-95ag-9yf8
summary 
Improper Privilege Management
ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-43877.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-43877.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-43877
reference_id
reference_type
scores
0
value 0.00681
scoring_system epss
scoring_elements 0.71556
published_at 2026-04-01T12:55:00Z
1
value 0.00681
scoring_system epss
scoring_elements 0.71563
published_at 2026-04-02T12:55:00Z
2
value 0.00681
scoring_system epss
scoring_elements 0.7158
published_at 2026-04-04T12:55:00Z
3
value 0.00681
scoring_system epss
scoring_elements 0.71553
published_at 2026-04-07T12:55:00Z
4
value 0.00681
scoring_system epss
scoring_elements 0.71593
published_at 2026-04-13T12:55:00Z
5
value 0.00681
scoring_system epss
scoring_elements 0.71604
published_at 2026-04-09T12:55:00Z
6
value 0.00681
scoring_system epss
scoring_elements 0.71627
published_at 2026-04-11T12:55:00Z
7
value 0.00681
scoring_system epss
scoring_elements 0.71611
published_at 2026-04-12T12:55:00Z
8
value 0.00681
scoring_system epss
scoring_elements 0.71637
published_at 2026-04-16T12:55:00Z
9
value 0.00681
scoring_system epss
scoring_elements 0.71642
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-43877
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2031201
reference_id 2031201
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2031201
3
reference_url https://security.archlinux.org/AVG-2642
reference_id AVG-2642
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2642
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-43877
reference_id CVE-2021-43877
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2021-43877
5
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43877
reference_id CVE-2021-43877
reference_type
scores
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43877
fixed_packages
aliases CVE-2021-43877
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-caba-95ag-9yf8
2
url VCID-nx74-pj4e-4fde
vulnerability_id VCID-nx74-pj4e-4fde
summary 
ASP.NET Core and Visual Studio Denial of Service Vulnerability
A denial-of-service vulnerability exists in the way Kestrel parses HTTP/2 requests. The security update addresses the vulnerability by fixing the way the Kestrel parses HTTP/2 requests. Users are advised to upgrade.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-1723.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-1723.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-1723
reference_id
reference_type
scores
0
value 0.04579
scoring_system epss
scoring_elements 0.89229
published_at 2026-04-18T12:55:00Z
1
value 0.04579
scoring_system epss
scoring_elements 0.89169
published_at 2026-04-01T12:55:00Z
2
value 0.04579
scoring_system epss
scoring_elements 0.89175
published_at 2026-04-02T12:55:00Z
3
value 0.04579
scoring_system epss
scoring_elements 0.89189
published_at 2026-04-04T12:55:00Z
4
value 0.04579
scoring_system epss
scoring_elements 0.89192
published_at 2026-04-07T12:55:00Z
5
value 0.04579
scoring_system epss
scoring_elements 0.8921
published_at 2026-04-08T12:55:00Z
6
value 0.04579
scoring_system epss
scoring_elements 0.89214
published_at 2026-04-09T12:55:00Z
7
value 0.04579
scoring_system epss
scoring_elements 0.89224
published_at 2026-04-11T12:55:00Z
8
value 0.04579
scoring_system epss
scoring_elements 0.8922
published_at 2026-04-12T12:55:00Z
9
value 0.04579
scoring_system epss
scoring_elements 0.89217
published_at 2026-04-13T12:55:00Z
10
value 0.04579
scoring_system epss
scoring_elements 0.8923
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-1723
2
reference_url https://github.com/dotnet/announcements/issues/170
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/announcements/issues/170
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3L27CGRVEWUPELNJOGTCW6GLEDBECB4B
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3L27CGRVEWUPELNJOGTCW6GLEDBECB4B
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RRXHERXW4KR5WCP76UDW5PC7GX3YQLUW
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RRXHERXW4KR5WCP76UDW5PC7GX3YQLUW
5
reference_url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1723
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1723
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-1723
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-1723
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1914258
reference_id 1914258
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1914258
8
reference_url https://security.archlinux.org/ASA-202103-16
reference_id ASA-202103-16
reference_type
scores
url https://security.archlinux.org/ASA-202103-16
9
reference_url https://security.archlinux.org/ASA-202103-17
reference_id ASA-202103-17
reference_type
scores
url https://security.archlinux.org/ASA-202103-17
10
reference_url https://security.archlinux.org/AVG-1449
reference_id AVG-1449
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1449
11
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1723
reference_id CVE-2021-1723
reference_type
scores
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1723
12
reference_url https://github.com/advisories/GHSA-242j-2gm6-5rwx
reference_id GHSA-242j-2gm6-5rwx
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-242j-2gm6-5rwx
13
reference_url https://access.redhat.com/errata/RHSA-2021:0094
reference_id RHSA-2021:0094
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0094
14
reference_url https://access.redhat.com/errata/RHSA-2021:0095
reference_id RHSA-2021:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0095
15
reference_url https://access.redhat.com/errata/RHSA-2021:0096
reference_id RHSA-2021:0096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0096
16
reference_url https://access.redhat.com/errata/RHSA-2021:0114
reference_id RHSA-2021:0114
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0114
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@5.0.2
purl pkg:nuget/Microsoft.AspNetCore.All@5.0.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@5.0.2
aliases CVE-2021-1723, GHSA-242j-2gm6-5rwx
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nx74-pj4e-4fde
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@5.0.0