Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/py3-jinja2@3.1.5-r0?arch=armhf&distroversion=v3.23&reponame=main

Type apk

Namespace alpine

Name py3-jinja2

Version 3.1.5-r0

Qualifiers

arch	armhf
distroversion	v3.23
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 3.1.6-r0

Latest_non_vulnerable_version 3.1.6-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-7q45-y8e4-bycm

vulnerability_id VCID-7q45-y8e4-bycm

summary

Jinja has a sandbox breakout through indirect reference to format method
An oversight in how the Jinja sandboxed environment detects calls to `str.format` allows an attacker that controls the content of a template to execute arbitrary Python code.

To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications which execute untrusted templates.

Jinja's sandbox does catch calls to `str.format` and ensures they don't escape the sandbox. However, it's possible to store a reference to a malicious string's `format` method, then pass that to a filter that calls it. No such filters are built-in to Jinja, but could be present through custom filters in an application. After the fix, such indirect calls are also handled by the sandbox.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56326.json

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56326.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-56326

reference_id

reference_type

scores

value	0.0057
scoring_system	epss
scoring_elements	0.69014
published_at	2026-06-06T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.69005
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-56326

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56326
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56326

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/pallets/jinja

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/pallets/jinja

reference_url

https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-27T17:50:50Z/

url

https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4

reference_url

https://github.com/pallets/jinja/releases/tag/3.1.5

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-27T17:50:50Z/

url

https://github.com/pallets/jinja/releases/tag/3.1.5

reference_url

https://lists.debian.org/debian-lts-announce/2025/04/msg00022.html

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/04/msg00022.html

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1091331
reference_id	1091331
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1091331

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2333856
reference_id	2333856
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2333856

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-56326

reference_id

CVE-2024-56326

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-56326

reference_url	https://github.com/advisories/GHSA-q2x7-8rv6-6q7h
reference_id	GHSA-q2x7-8rv6-6q7h
reference_type
scores
url	https://github.com/advisories/GHSA-q2x7-8rv6-6q7h

reference_url

https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h

reference_id

GHSA-q2x7-8rv6-6q7h

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-27T17:50:50Z/

url

https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h

reference_url	https://access.redhat.com/errata/RHSA-2025:0308
reference_id	RHSA-2025:0308
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0308

reference_url	https://access.redhat.com/errata/RHSA-2025:0335
reference_id	RHSA-2025:0335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0335

reference_url	https://access.redhat.com/errata/RHSA-2025:0338
reference_id	RHSA-2025:0338
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0338

reference_url	https://access.redhat.com/errata/RHSA-2025:0341
reference_id	RHSA-2025:0341
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0341

reference_url	https://access.redhat.com/errata/RHSA-2025:0345
reference_id	RHSA-2025:0345
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0345

reference_url	https://access.redhat.com/errata/RHSA-2025:0656
reference_id	RHSA-2025:0656
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0656

reference_url	https://access.redhat.com/errata/RHSA-2025:0667
reference_id	RHSA-2025:0667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0667

reference_url	https://access.redhat.com/errata/RHSA-2025:0711
reference_id	RHSA-2025:0711
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0711

reference_url	https://access.redhat.com/errata/RHSA-2025:0721
reference_id	RHSA-2025:0721
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0721

reference_url	https://access.redhat.com/errata/RHSA-2025:0722
reference_id	RHSA-2025:0722
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0722

reference_url	https://access.redhat.com/errata/RHSA-2025:0753
reference_id	RHSA-2025:0753
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0753

reference_url	https://access.redhat.com/errata/RHSA-2025:0777
reference_id	RHSA-2025:0777
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0777

reference_url	https://access.redhat.com/errata/RHSA-2025:0830
reference_id	RHSA-2025:0830
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0830

reference_url	https://access.redhat.com/errata/RHSA-2025:0834
reference_id	RHSA-2025:0834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0834

reference_url	https://access.redhat.com/errata/RHSA-2025:0842
reference_id	RHSA-2025:0842
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0842

reference_url	https://access.redhat.com/errata/RHSA-2025:0850
reference_id	RHSA-2025:0850
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0850

reference_url	https://access.redhat.com/errata/RHSA-2025:0875
reference_id	RHSA-2025:0875
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0875

reference_url	https://access.redhat.com/errata/RHSA-2025:0883
reference_id	RHSA-2025:0883
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0883

reference_url	https://access.redhat.com/errata/RHSA-2025:0950
reference_id	RHSA-2025:0950
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0950

reference_url	https://access.redhat.com/errata/RHSA-2025:0951
reference_id	RHSA-2025:0951
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0951

reference_url	https://access.redhat.com/errata/RHSA-2025:0978
reference_id	RHSA-2025:0978
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0978

reference_url	https://access.redhat.com/errata/RHSA-2025:1101
reference_id	RHSA-2025:1101
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1101

reference_url	https://access.redhat.com/errata/RHSA-2025:1109
reference_id	RHSA-2025:1109
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1109

reference_url	https://access.redhat.com/errata/RHSA-2025:1118
reference_id	RHSA-2025:1118
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1118

reference_url	https://access.redhat.com/errata/RHSA-2025:1123
reference_id	RHSA-2025:1123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1123

reference_url	https://access.redhat.com/errata/RHSA-2025:1130
reference_id	RHSA-2025:1130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1130

reference_url	https://access.redhat.com/errata/RHSA-2025:1241
reference_id	RHSA-2025:1241
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1241

reference_url	https://access.redhat.com/errata/RHSA-2025:1250
reference_id	RHSA-2025:1250
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1250

reference_url	https://access.redhat.com/errata/RHSA-2025:1710
reference_id	RHSA-2025:1710
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1710

reference_url	https://access.redhat.com/errata/RHSA-2025:2399
reference_id	RHSA-2025:2399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2399

reference_url	https://access.redhat.com/errata/RHSA-2025:2612
reference_id	RHSA-2025:2612
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2612

reference_url	https://access.redhat.com/errata/RHSA-2025:2700
reference_id	RHSA-2025:2700
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2700

reference_url	https://access.redhat.com/errata/RHSA-2025:3374
reference_id	RHSA-2025:3374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3374

reference_url	https://access.redhat.com/errata/RHSA-2025:4576
reference_id	RHSA-2025:4576
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4576

reference_url	https://usn.ubuntu.com/7244-1/
reference_id	USN-7244-1
reference_type
scores
url	https://usn.ubuntu.com/7244-1/

reference_url	https://usn.ubuntu.com/7343-1/
reference_id	USN-7343-1
reference_type
scores
url	https://usn.ubuntu.com/7343-1/

fixed_packages

url	pkg:apk/alpine/py3-jinja2@3.1.5-r0?arch=armhf&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/py3-jinja2@3.1.5-r0?arch=armhf&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-jinja2@3.1.5-r0%3Farch=armhf&distroversion=v3.23&reponame=main

aliases CVE-2024-56326, GHSA-q2x7-8rv6-6q7h

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7q45-y8e4-bycm

url VCID-npd2-9hy6-7ydx

vulnerability_id VCID-npd2-9hy6-7ydx

summary

Jinja has a sandbox breakout through malicious filenames
A bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of if Jinja's sandbox is used.

To exploit the vulnerability, an attacker needs to control both the filename and the contents of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications which execute untrusted templates where the template author can also choose the template filename.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56201.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56201.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-56201

reference_id

reference_type

scores

value	0.00573
scoring_system	epss
scoring_elements	0.69143
published_at	2026-06-06T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.69134
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-56201

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/pallets/jinja

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/pallets/jinja

reference_url

https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-24T01:44:55Z/

url

https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f

reference_url

https://github.com/pallets/jinja/issues/1792

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-24T01:44:55Z/

url

https://github.com/pallets/jinja/issues/1792

reference_url

https://github.com/pallets/jinja/releases/tag/3.1.5

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-24T01:44:55Z/

url

https://github.com/pallets/jinja/releases/tag/3.1.5

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1091329
reference_id	1091329
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1091329

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2333854
reference_id	2333854
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2333854

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-56201

reference_id

CVE-2024-56201

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-56201

reference_url	https://github.com/advisories/GHSA-gmj6-6f8f-6699
reference_id	GHSA-gmj6-6f8f-6699
reference_type
scores
url	https://github.com/advisories/GHSA-gmj6-6f8f-6699

reference_url

https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699

reference_id

GHSA-gmj6-6f8f-6699

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	5.4
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-24T01:44:55Z/

url

https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699

reference_url	https://access.redhat.com/errata/RHSA-2025:0308
reference_id	RHSA-2025:0308
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0308

reference_url	https://access.redhat.com/errata/RHSA-2025:0335
reference_id	RHSA-2025:0335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0335

reference_url	https://access.redhat.com/errata/RHSA-2025:0338
reference_id	RHSA-2025:0338
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0338

reference_url	https://access.redhat.com/errata/RHSA-2025:0341
reference_id	RHSA-2025:0341
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0341

reference_url	https://access.redhat.com/errata/RHSA-2025:0345
reference_id	RHSA-2025:0345
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0345

reference_url	https://access.redhat.com/errata/RHSA-2025:0656
reference_id	RHSA-2025:0656
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0656

reference_url	https://access.redhat.com/errata/RHSA-2025:0721
reference_id	RHSA-2025:0721
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0721

reference_url	https://access.redhat.com/errata/RHSA-2025:0722
reference_id	RHSA-2025:0722
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0722

reference_url	https://access.redhat.com/errata/RHSA-2025:0753
reference_id	RHSA-2025:0753
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0753

reference_url	https://access.redhat.com/errata/RHSA-2025:0777
reference_id	RHSA-2025:0777
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0777

reference_url	https://access.redhat.com/errata/RHSA-2025:0830
reference_id	RHSA-2025:0830
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0830

reference_url	https://access.redhat.com/errata/RHSA-2025:0834
reference_id	RHSA-2025:0834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0834

reference_url	https://access.redhat.com/errata/RHSA-2025:0842
reference_id	RHSA-2025:0842
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0842

reference_url	https://access.redhat.com/errata/RHSA-2025:0875
reference_id	RHSA-2025:0875
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0875

reference_url	https://access.redhat.com/errata/RHSA-2025:1101
reference_id	RHSA-2025:1101
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1101

reference_url	https://access.redhat.com/errata/RHSA-2025:1118
reference_id	RHSA-2025:1118
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1118

reference_url	https://access.redhat.com/errata/RHSA-2025:1123
reference_id	RHSA-2025:1123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1123

reference_url	https://access.redhat.com/errata/RHSA-2025:1130
reference_id	RHSA-2025:1130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1130

reference_url	https://access.redhat.com/errata/RHSA-2025:3368
reference_id	RHSA-2025:3368
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3368

reference_url	https://access.redhat.com/errata/RHSA-2025:3374
reference_id	RHSA-2025:3374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3374

reference_url	https://access.redhat.com/errata/RHSA-2025:3397
reference_id	RHSA-2025:3397
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3397

reference_url	https://access.redhat.com/errata/RHSA-2025:3491
reference_id	RHSA-2025:3491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3491

reference_url	https://usn.ubuntu.com/7244-1/
reference_id	USN-7244-1
reference_type
scores
url	https://usn.ubuntu.com/7244-1/

reference_url	https://usn.ubuntu.com/7343-1/
reference_id	USN-7343-1
reference_type
scores
url	https://usn.ubuntu.com/7343-1/

fixed_packages

url	pkg:apk/alpine/py3-jinja2@3.1.5-r0?arch=armhf&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/py3-jinja2@3.1.5-r0?arch=armhf&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-jinja2@3.1.5-r0%3Farch=armhf&distroversion=v3.23&reponame=main

aliases CVE-2024-56201, GHSA-gmj6-6f8f-6699

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-npd2-9hy6-7ydx

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-jinja2@3.1.5-r0%3Farch=armhf&distroversion=v3.23&reponame=main

Package Instance