Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/zabbix@7.4.3-r0?arch=armv7&distroversion=edge&reponame=community
Typeapk
Namespacealpine
Namezabbix
Version7.4.3-r0
Qualifiers
arch armv7
distroversion edge
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-s1mb-1gsj-pbed
vulnerability_id VCID-s1mb-1gsj-pbed
summary An authenticated Zabbix user (including Guest) is able to cause disproportionate CPU load on the webserver by sending specially crafted parameters to /imgstore.php, leading to potential denial of service.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-49643
reference_id
reference_type
scores
0
value 0.00133
scoring_system epss
scoring_elements 0.32825
published_at 2026-04-18T12:55:00Z
1
value 0.00133
scoring_system epss
scoring_elements 0.32848
published_at 2026-04-16T12:55:00Z
2
value 0.00133
scoring_system epss
scoring_elements 0.32936
published_at 2026-04-02T12:55:00Z
3
value 0.00133
scoring_system epss
scoring_elements 0.32971
published_at 2026-04-04T12:55:00Z
4
value 0.00133
scoring_system epss
scoring_elements 0.32793
published_at 2026-04-07T12:55:00Z
5
value 0.00133
scoring_system epss
scoring_elements 0.3284
published_at 2026-04-08T12:55:00Z
6
value 0.00133
scoring_system epss
scoring_elements 0.3287
published_at 2026-04-09T12:55:00Z
7
value 0.00133
scoring_system epss
scoring_elements 0.32871
published_at 2026-04-11T12:55:00Z
8
value 0.00133
scoring_system epss
scoring_elements 0.32832
published_at 2026-04-12T12:55:00Z
9
value 0.00133
scoring_system epss
scoring_elements 0.32806
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-49643
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49643
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49643
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121841
reference_id 1121841
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121841
3
reference_url https://support.zabbix.com/browse/ZBX-27284
reference_id ZBX-27284
reference_type
scores
0
value 6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T14:33:57Z/
url https://support.zabbix.com/browse/ZBX-27284
fixed_packages
0
url pkg:apk/alpine/zabbix@7.4.3-r0?arch=armv7&distroversion=edge&reponame=community
purl pkg:apk/alpine/zabbix@7.4.3-r0?arch=armv7&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zabbix@7.4.3-r0%3Farch=armv7&distroversion=edge&reponame=community
aliases CVE-2025-49643
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s1mb-1gsj-pbed
1
url VCID-uv2e-h2ju-2fgj
vulnerability_id VCID-uv2e-h2ju-2fgj
summary zabbix: Zabbix: Authenticated Super Admin can read arbitrary files via oauth.authorize action
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27232.json
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27232.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-27232
reference_id
reference_type
scores
0
value 0.00048
scoring_system epss
scoring_elements 0.15
published_at 2026-04-02T12:55:00Z
1
value 0.00048
scoring_system epss
scoring_elements 0.14799
published_at 2026-04-18T12:55:00Z
2
value 0.00048
scoring_system epss
scoring_elements 0.14892
published_at 2026-04-13T12:55:00Z
3
value 0.00048
scoring_system epss
scoring_elements 0.14792
published_at 2026-04-16T12:55:00Z
4
value 0.00048
scoring_system epss
scoring_elements 0.15078
published_at 2026-04-04T12:55:00Z
5
value 0.00048
scoring_system epss
scoring_elements 0.14882
published_at 2026-04-07T12:55:00Z
6
value 0.00048
scoring_system epss
scoring_elements 0.14971
published_at 2026-04-08T12:55:00Z
7
value 0.00048
scoring_system epss
scoring_elements 0.15022
published_at 2026-04-09T12:55:00Z
8
value 0.00048
scoring_system epss
scoring_elements 0.14986
published_at 2026-04-11T12:55:00Z
9
value 0.00048
scoring_system epss
scoring_elements 0.1495
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-27232
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2417984
reference_id 2417984
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2417984
3
reference_url https://support.zabbix.com/browse/ZBX-27282
reference_id ZBX-27282
reference_type
scores
0
value 6.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T14:38:44Z/
url https://support.zabbix.com/browse/ZBX-27282
fixed_packages
0
url pkg:apk/alpine/zabbix@7.4.3-r0?arch=armv7&distroversion=edge&reponame=community
purl pkg:apk/alpine/zabbix@7.4.3-r0?arch=armv7&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zabbix@7.4.3-r0%3Farch=armv7&distroversion=edge&reponame=community
aliases CVE-2025-27232
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uv2e-h2ju-2fgj
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/zabbix@7.4.3-r0%3Farch=armv7&distroversion=edge&reponame=community