Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/gnupg@1.4.6-2

Type deb

Namespace debian

Name gnupg

Version 1.4.6-2

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1.4.18-7+deb8u5

Latest_non_vulnerable_version 1.4.18-7+deb8u5

Affected_by_vulnerabilities

url VCID-hrwu-6m9a-u7g9

vulnerability_id VCID-hrwu-6m9a-u7g9

summary private key recovery

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7526
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7526

reference_url	https://security.archlinux.org/ASA-201707-1
reference_id	ASA-201707-1
reference_type
scores
url	https://security.archlinux.org/ASA-201707-1

reference_url

https://security.archlinux.org/AVG-338

reference_id

AVG-338

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-338

fixed_packages

url	pkg:deb/debian/gnupg@1.4.18-7%2Bdeb8u5
purl	pkg:deb/debian/gnupg@1.4.18-7%2Bdeb8u5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnupg@1.4.18-7%252Bdeb8u5

aliases CVE-2017-7526

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hrwu-6m9a-u7g9

url VCID-mnnc-a893-6kae

vulnerability_id VCID-mnnc-a893-6kae

summary content spoofing

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12020
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12020

reference_url	https://security.archlinux.org/ASA-201806-8
reference_id	ASA-201806-8
reference_type
scores
url	https://security.archlinux.org/ASA-201806-8

reference_url

https://security.archlinux.org/AVG-713

reference_id

AVG-713

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-713

fixed_packages

url	pkg:deb/debian/gnupg@1.4.18-7%2Bdeb8u5
purl	pkg:deb/debian/gnupg@1.4.18-7%2Bdeb8u5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnupg@1.4.18-7%252Bdeb8u5

aliases CVE-2018-12020

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mnnc-a893-6kae

Fixing_vulnerabilities

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gnupg@1.4.6-2

Package Instance