Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:nginx/nginx@0.8.38
Typenginx
Namespace
Namenginx
Version0.8.38
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.30.2
Latest_non_vulnerable_version1.31.1
Affected_by_vulnerabilities
0
url VCID-3b34-tqxp-h7h5
vulnerability_id VCID-3b34-tqxp-h7h5
summary nginx: NGINX ngx_mail_smtp_module vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-53859.json
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-53859.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-53859
reference_id
reference_type
scores
0
value 0.00031
scoring_system epss
scoring_elements 0.09485
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-53859
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53859
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53859
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111138
reference_id 1111138
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111138
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2388238
reference_id 2388238
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2388238
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-53859
reference_id CVE-2025-53859
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2025-53859
7
reference_url https://my.f5.com/manage/s/article/K000152786
reference_id K000152786
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-13T15:06:23Z/
url https://my.f5.com/manage/s/article/K000152786
8
reference_url https://access.redhat.com/errata/RHSA-2026:8346
reference_id RHSA-2026:8346
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8346
9
reference_url https://usn.ubuntu.com/7715-1/
reference_id USN-7715-1
reference_type
scores
url https://usn.ubuntu.com/7715-1/
fixed_packages
0
url pkg:nginx/nginx@1.29.1
purl pkg:nginx/nginx@1.29.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-422n-2b44-mbh2
1
vulnerability VCID-5kgu-8trw-zufv
2
vulnerability VCID-b3hy-gnzn-f3af
3
vulnerability VCID-cxs8-z482-ufht
4
vulnerability VCID-dfzv-bqb6-xkgp
5
vulnerability VCID-fpta-dc5f-pkct
6
vulnerability VCID-gjvm-84ff-3qad
7
vulnerability VCID-kn1z-74dk-zyed
8
vulnerability VCID-ttbr-yfea-47c5
9
vulnerability VCID-uy9d-zu9s-6yh3
10
vulnerability VCID-wc2b-cb7d-ekbq
11
vulnerability VCID-xg73-adr1-ybfr
12
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.29.1
aliases CVE-2025-53859
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3b34-tqxp-h7h5
1
url VCID-5f4n-9p67-j3h2
vulnerability_id VCID-5f4n-9p67-j3h2
summary Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long response.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-4315
reference_id
reference_type
scores
0
value 0.02811
scoring_system epss
scoring_elements 0.86379
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-4315
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4315
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4315
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-4315
reference_id CVE-2011-4315
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2011-4315
3
reference_url https://security.gentoo.org/glsa/201203-22
reference_id GLSA-201203-22
reference_type
scores
url https://security.gentoo.org/glsa/201203-22
fixed_packages
0
url pkg:nginx/nginx@1.0.10
purl pkg:nginx/nginx@1.0.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qja-a3mm-4fd2
1
vulnerability VCID-3b34-tqxp-h7h5
2
vulnerability VCID-422n-2b44-mbh2
3
vulnerability VCID-dfzv-bqb6-xkgp
4
vulnerability VCID-dvnw-kcqg-mbda
5
vulnerability VCID-gjvm-84ff-3qad
6
vulnerability VCID-kn1z-74dk-zyed
7
vulnerability VCID-ttbr-yfea-47c5
8
vulnerability VCID-uy9d-zu9s-6yh3
9
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.0.10
1
url pkg:nginx/nginx@1.1.8
purl pkg:nginx/nginx@1.1.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qja-a3mm-4fd2
1
vulnerability VCID-3b34-tqxp-h7h5
2
vulnerability VCID-422n-2b44-mbh2
3
vulnerability VCID-dfzv-bqb6-xkgp
4
vulnerability VCID-dvnw-kcqg-mbda
5
vulnerability VCID-gjvm-84ff-3qad
6
vulnerability VCID-kn1z-74dk-zyed
7
vulnerability VCID-ttbr-yfea-47c5
8
vulnerability VCID-uy9d-zu9s-6yh3
9
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.1.8
aliases CVE-2011-4315
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5f4n-9p67-j3h2
2
url VCID-dfzv-bqb6-xkgp
vulnerability_id VCID-dfzv-bqb6-xkgp
summary nginx: ngx_http_charset_module: information disclosure and denial of service
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42934.json
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42934.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-42934
reference_id
reference_type
scores
0
value 0.00044
scoring_system epss
scoring_elements 0.13942
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-42934
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42934
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42934
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2477066
reference_id 2477066
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2477066
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-42934
reference_id CVE-2026-42934
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2026-42934
6
reference_url https://my.f5.com/manage/s/article/K000161028
reference_id K000161028
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:55:18Z/
url https://my.f5.com/manage/s/article/K000161028
fixed_packages
0
url pkg:nginx/nginx@1.30.1
purl pkg:nginx/nginx@1.30.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.30.1
1
url pkg:nginx/nginx@1.31.0
purl pkg:nginx/nginx@1.31.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.31.0
aliases CVE-2026-42934
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dfzv-bqb6-xkgp
3
url VCID-dvnw-kcqg-mbda
vulnerability_id VCID-dvnw-kcqg-mbda
summary Use-after-free vulnerability in nginx before 1.0.14 and 1.1.x before 1.1.17 allows remote HTTP servers to obtain sensitive information from process memory via a crafted backend response, in conjunction with a client request.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-1180
reference_id
reference_type
scores
0
value 0.03062
scoring_system epss
scoring_elements 0.86944
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-1180
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1180
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1180
2
reference_url https://mailman.nginx.org/pipermail/nginx-announce/2012/000076.html
reference_id
reference_type
scores
url https://mailman.nginx.org/pipermail/nginx-announce/2012/000076.html
3
reference_url https://nginx.org/download/patch.2012.memory.txt
reference_id
reference_type
scores
url https://nginx.org/download/patch.2012.memory.txt
4
reference_url https://nginx.org/download/patch.2012.memory.txt.asc
reference_id
reference_type
scores
url https://nginx.org/download/patch.2012.memory.txt.asc
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=664137
reference_id 664137
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=664137
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-1180
reference_id CVE-2012-1180
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2012-1180
7
reference_url https://security.gentoo.org/glsa/201203-22
reference_id GLSA-201203-22
reference_type
scores
url https://security.gentoo.org/glsa/201203-22
fixed_packages
0
url pkg:nginx/nginx@1.0.14
purl pkg:nginx/nginx@1.0.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qja-a3mm-4fd2
1
vulnerability VCID-3b34-tqxp-h7h5
2
vulnerability VCID-422n-2b44-mbh2
3
vulnerability VCID-dfzv-bqb6-xkgp
4
vulnerability VCID-gjvm-84ff-3qad
5
vulnerability VCID-kn1z-74dk-zyed
6
vulnerability VCID-ttbr-yfea-47c5
7
vulnerability VCID-uy9d-zu9s-6yh3
8
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.0.14
1
url pkg:nginx/nginx@1.1.17
purl pkg:nginx/nginx@1.1.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qja-a3mm-4fd2
1
vulnerability VCID-3b34-tqxp-h7h5
2
vulnerability VCID-422n-2b44-mbh2
3
vulnerability VCID-dfzv-bqb6-xkgp
4
vulnerability VCID-gjvm-84ff-3qad
5
vulnerability VCID-kn1z-74dk-zyed
6
vulnerability VCID-ttbr-yfea-47c5
7
vulnerability VCID-uy9d-zu9s-6yh3
8
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.1.17
aliases CVE-2012-1180
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dvnw-kcqg-mbda
4
url VCID-gjvm-84ff-3qad
vulnerability_id VCID-gjvm-84ff-3qad
summary NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27654.json
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27654.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-27654
reference_id
reference_type
scores
0
value 0.0002
scoring_system epss
scoring_elements 0.05879
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-27654
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27654
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27654
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2450776
reference_id 2450776
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2450776
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-27654
reference_id CVE-2026-27654
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2026-27654
6
reference_url https://my.f5.com/manage/s/article/K000160382
reference_id K000160382
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value 8.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-24T15:14:50Z/
url https://my.f5.com/manage/s/article/K000160382
7
reference_url https://access.redhat.com/errata/RHSA-2026:10065
reference_id RHSA-2026:10065
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10065
8
reference_url https://access.redhat.com/errata/RHSA-2026:13634
reference_id RHSA-2026:13634
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13634
9
reference_url https://access.redhat.com/errata/RHSA-2026:13680
reference_id RHSA-2026:13680
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13680
10
reference_url https://access.redhat.com/errata/RHSA-2026:13839
reference_id RHSA-2026:13839
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13839
11
reference_url https://access.redhat.com/errata/RHSA-2026:14836
reference_id RHSA-2026:14836
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:14836
12
reference_url https://access.redhat.com/errata/RHSA-2026:15942
reference_id RHSA-2026:15942
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15942
13
reference_url https://access.redhat.com/errata/RHSA-2026:15943
reference_id RHSA-2026:15943
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15943
14
reference_url https://access.redhat.com/errata/RHSA-2026:15945
reference_id RHSA-2026:15945
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15945
15
reference_url https://access.redhat.com/errata/RHSA-2026:15966
reference_id RHSA-2026:15966
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15966
16
reference_url https://access.redhat.com/errata/RHSA-2026:6906
reference_id RHSA-2026:6906
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6906
17
reference_url https://access.redhat.com/errata/RHSA-2026:6907
reference_id RHSA-2026:6907
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6907
18
reference_url https://access.redhat.com/errata/RHSA-2026:6923
reference_id RHSA-2026:6923
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6923
19
reference_url https://access.redhat.com/errata/RHSA-2026:7002
reference_id RHSA-2026:7002
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7002
20
reference_url https://access.redhat.com/errata/RHSA-2026:7343
reference_id RHSA-2026:7343
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7343
21
reference_url https://access.redhat.com/errata/RHSA-2026:8346
reference_id RHSA-2026:8346
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8346
22
reference_url https://usn.ubuntu.com/8210-1/
reference_id USN-8210-1
reference_type
scores
url https://usn.ubuntu.com/8210-1/
fixed_packages
0
url pkg:nginx/nginx@1.28.3
purl pkg:nginx/nginx@1.28.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3b34-tqxp-h7h5
1
vulnerability VCID-422n-2b44-mbh2
2
vulnerability VCID-b3hy-gnzn-f3af
3
vulnerability VCID-dfzv-bqb6-xkgp
4
vulnerability VCID-uy9d-zu9s-6yh3
5
vulnerability VCID-wc2b-cb7d-ekbq
6
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.28.3
1
url pkg:nginx/nginx@1.29.7
purl pkg:nginx/nginx@1.29.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-422n-2b44-mbh2
1
vulnerability VCID-b3hy-gnzn-f3af
2
vulnerability VCID-dfzv-bqb6-xkgp
3
vulnerability VCID-rqp9-y9tu-qbgg
4
vulnerability VCID-uy9d-zu9s-6yh3
5
vulnerability VCID-wc2b-cb7d-ekbq
6
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.29.7
aliases CVE-2026-27654
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gjvm-84ff-3qad
5
url VCID-kn1z-74dk-zyed
vulnerability_id VCID-kn1z-74dk-zyed
summary NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28753.json
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28753.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-28753
reference_id
reference_type
scores
0
value 0.00029
scoring_system epss
scoring_elements 0.08898
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-28753
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-28753
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-28753
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2450780
reference_id 2450780
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2450780
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-28753
reference_id CVE-2026-28753
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2026-28753
6
reference_url https://my.f5.com/manage/s/article/K000160367
reference_id K000160367
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-24T15:24:28Z/
url https://my.f5.com/manage/s/article/K000160367
7
reference_url https://access.redhat.com/errata/RHSA-2026:8346
reference_id RHSA-2026:8346
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8346
8
reference_url https://usn.ubuntu.com/8210-1/
reference_id USN-8210-1
reference_type
scores
url https://usn.ubuntu.com/8210-1/
fixed_packages
0
url pkg:nginx/nginx@1.28.3
purl pkg:nginx/nginx@1.28.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3b34-tqxp-h7h5
1
vulnerability VCID-422n-2b44-mbh2
2
vulnerability VCID-b3hy-gnzn-f3af
3
vulnerability VCID-dfzv-bqb6-xkgp
4
vulnerability VCID-uy9d-zu9s-6yh3
5
vulnerability VCID-wc2b-cb7d-ekbq
6
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.28.3
1
url pkg:nginx/nginx@1.29.7
purl pkg:nginx/nginx@1.29.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-422n-2b44-mbh2
1
vulnerability VCID-b3hy-gnzn-f3af
2
vulnerability VCID-dfzv-bqb6-xkgp
3
vulnerability VCID-rqp9-y9tu-qbgg
4
vulnerability VCID-uy9d-zu9s-6yh3
5
vulnerability VCID-wc2b-cb7d-ekbq
6
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.29.7
aliases CVE-2026-28753
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kn1z-74dk-zyed
6
url VCID-ttbr-yfea-47c5
vulnerability_id VCID-ttbr-yfea-47c5
summary NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27651.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27651.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-27651
reference_id
reference_type
scores
0
value 0.00048
scoring_system epss
scoring_elements 0.15288
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-27651
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27651
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27651
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2450791
reference_id 2450791
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2450791
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-27651
reference_id CVE-2026-27651
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2026-27651
6
reference_url https://my.f5.com/manage/s/article/K000160383
reference_id K000160383
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-24T15:02:03Z/
url https://my.f5.com/manage/s/article/K000160383
7
reference_url https://access.redhat.com/errata/RHSA-2026:10065
reference_id RHSA-2026:10065
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10065
8
reference_url https://access.redhat.com/errata/RHSA-2026:13634
reference_id RHSA-2026:13634
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13634
9
reference_url https://access.redhat.com/errata/RHSA-2026:13680
reference_id RHSA-2026:13680
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13680
10
reference_url https://access.redhat.com/errata/RHSA-2026:13839
reference_id RHSA-2026:13839
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13839
11
reference_url https://access.redhat.com/errata/RHSA-2026:14836
reference_id RHSA-2026:14836
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:14836
12
reference_url https://access.redhat.com/errata/RHSA-2026:15942
reference_id RHSA-2026:15942
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15942
13
reference_url https://access.redhat.com/errata/RHSA-2026:15943
reference_id RHSA-2026:15943
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15943
14
reference_url https://access.redhat.com/errata/RHSA-2026:15945
reference_id RHSA-2026:15945
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15945
15
reference_url https://access.redhat.com/errata/RHSA-2026:15966
reference_id RHSA-2026:15966
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15966
16
reference_url https://access.redhat.com/errata/RHSA-2026:6906
reference_id RHSA-2026:6906
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6906
17
reference_url https://access.redhat.com/errata/RHSA-2026:6907
reference_id RHSA-2026:6907
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6907
18
reference_url https://access.redhat.com/errata/RHSA-2026:6923
reference_id RHSA-2026:6923
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6923
19
reference_url https://access.redhat.com/errata/RHSA-2026:7002
reference_id RHSA-2026:7002
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7002
20
reference_url https://access.redhat.com/errata/RHSA-2026:7343
reference_id RHSA-2026:7343
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7343
21
reference_url https://access.redhat.com/errata/RHSA-2026:8346
reference_id RHSA-2026:8346
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8346
22
reference_url https://usn.ubuntu.com/8210-1/
reference_id USN-8210-1
reference_type
scores
url https://usn.ubuntu.com/8210-1/
fixed_packages
0
url pkg:nginx/nginx@1.28.3
purl pkg:nginx/nginx@1.28.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3b34-tqxp-h7h5
1
vulnerability VCID-422n-2b44-mbh2
2
vulnerability VCID-b3hy-gnzn-f3af
3
vulnerability VCID-dfzv-bqb6-xkgp
4
vulnerability VCID-uy9d-zu9s-6yh3
5
vulnerability VCID-wc2b-cb7d-ekbq
6
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.28.3
1
url pkg:nginx/nginx@1.29.7
purl pkg:nginx/nginx@1.29.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-422n-2b44-mbh2
1
vulnerability VCID-b3hy-gnzn-f3af
2
vulnerability VCID-dfzv-bqb6-xkgp
3
vulnerability VCID-rqp9-y9tu-qbgg
4
vulnerability VCID-uy9d-zu9s-6yh3
5
vulnerability VCID-wc2b-cb7d-ekbq
6
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.29.7
aliases CVE-2026-27651
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ttbr-yfea-47c5
7
url VCID-uy9d-zu9s-6yh3
vulnerability_id VCID-uy9d-zu9s-6yh3
summary nginx: NGINX: Arbitrary Code Execution Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42945.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42945.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-42945
reference_id
reference_type
scores
0
value 0.00897
scoring_system epss
scoring_elements 0.75963
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-42945
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42945
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42945
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2477116
reference_id 2477116
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2477116
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-42945
reference_id CVE-2026-42945
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2026-42945
6
reference_url https://my.f5.com/manage/s/article/K000161019
reference_id K000161019
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-13T15:55:27Z/
url https://my.f5.com/manage/s/article/K000161019
7
reference_url https://access.redhat.com/errata/RHSA-2026:17417
reference_id RHSA-2026:17417
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17417
8
reference_url https://access.redhat.com/errata/RHSA-2026:17751
reference_id RHSA-2026:17751
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17751
9
reference_url https://access.redhat.com/errata/RHSA-2026:17752
reference_id RHSA-2026:17752
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17752
10
reference_url https://access.redhat.com/errata/RHSA-2026:17753
reference_id RHSA-2026:17753
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17753
11
reference_url https://access.redhat.com/errata/RHSA-2026:17790
reference_id RHSA-2026:17790
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17790
12
reference_url https://access.redhat.com/errata/RHSA-2026:17791
reference_id RHSA-2026:17791
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17791
13
reference_url https://access.redhat.com/errata/RHSA-2026:17792
reference_id RHSA-2026:17792
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17792
14
reference_url https://access.redhat.com/errata/RHSA-2026:17793
reference_id RHSA-2026:17793
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17793
15
reference_url https://access.redhat.com/errata/RHSA-2026:17794
reference_id RHSA-2026:17794
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17794
16
reference_url https://access.redhat.com/errata/RHSA-2026:18029
reference_id RHSA-2026:18029
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:18029
17
reference_url https://access.redhat.com/errata/RHSA-2026:18041
reference_id RHSA-2026:18041
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:18041
18
reference_url https://access.redhat.com/errata/RHSA-2026:18063
reference_id RHSA-2026:18063
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:18063
19
reference_url https://access.redhat.com/errata/RHSA-2026:19159
reference_id RHSA-2026:19159
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:19159
20
reference_url https://access.redhat.com/errata/RHSA-2026:19371
reference_id RHSA-2026:19371
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:19371
21
reference_url https://access.redhat.com/errata/RHSA-2026:19372
reference_id RHSA-2026:19372
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:19372
22
reference_url https://access.redhat.com/errata/RHSA-2026:19374
reference_id RHSA-2026:19374
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:19374
23
reference_url https://access.redhat.com/errata/RHSA-2026:20442
reference_id RHSA-2026:20442
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20442
24
reference_url https://access.redhat.com/errata/RHSA-2026:20444
reference_id RHSA-2026:20444
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20444
25
reference_url https://access.redhat.com/errata/RHSA-2026:21275
reference_id RHSA-2026:21275
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:21275
26
reference_url https://usn.ubuntu.com/8271-1/
reference_id USN-8271-1
reference_type
scores
url https://usn.ubuntu.com/8271-1/
fixed_packages
0
url pkg:nginx/nginx@1.30.1
purl pkg:nginx/nginx@1.30.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.30.1
1
url pkg:nginx/nginx@1.31.0
purl pkg:nginx/nginx@1.31.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xsdq-5m4c-mqcs
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.31.0
aliases CVE-2026-42945
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uy9d-zu9s-6yh3
8
url VCID-xsdq-5m4c-mqcs
vulnerability_id VCID-xsdq-5m4c-mqcs
summary nginx: ngx_http_rewrite_module: code execution and denial of service
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9256.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9256.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-9256
reference_id
reference_type
scores
0
value 0.00177
scoring_system epss
scoring_elements 0.38908
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-9256
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9256
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9256
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1137339
reference_id 1137339
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1137339
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2480746
reference_id 2480746
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2480746
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-9256
reference_id CVE-2026-9256
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2026-9256
7
reference_url https://my.f5.com/manage/s/article/K000161377
reference_id K000161377
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-22T14:50:29Z/
url https://my.f5.com/manage/s/article/K000161377
8
reference_url https://access.redhat.com/errata/RHSA-2026:20351
reference_id RHSA-2026:20351
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20351
fixed_packages
0
url pkg:nginx/nginx@1.30.2
purl pkg:nginx/nginx@1.30.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.30.2
1
url pkg:nginx/nginx@1.31.1
purl pkg:nginx/nginx@1.31.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.31.1
aliases CVE-2026-9256
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xsdq-5m4c-mqcs
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:nginx/nginx@0.8.38