Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:gem/doorkeeper@5.1.0.rc1
Typegem
Namespace
Namedoorkeeper
Version5.1.0.rc1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version5.6.6
Latest_non_vulnerable_version5.6.6
Affected_by_vulnerabilities
0
url VCID-4hfe-zz1b-pbcz
vulnerability_id VCID-4hfe-zz1b-pbcz
summary Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape. Prior to version 5.6.6, Doorkeeper automatically processes authorization requests without user consent for public clients that have been previous approved. Public clients are inherently vulnerable to impersonation, their identity cannot be assured. This issue is fixed in version 5.6.6.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-34246
reference_id
reference_type
scores
0
value 0.00312
scoring_system epss
scoring_elements 0.54954
published_at 2026-06-12T12:55:00Z
1
value 0.00312
scoring_system epss
scoring_elements 0.54955
published_at 2026-06-14T12:55:00Z
2
value 0.00312
scoring_system epss
scoring_elements 0.54832
published_at 2026-06-11T12:55:00Z
3
value 0.00312
scoring_system epss
scoring_elements 0.54971
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-34246
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34246
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34246
2
reference_url https://github.com/advisories/GHSA-7w2c-w47h-789w
reference_id
reference_type
scores
0
value 4.2
scoring_system cvssv3
scoring_elements
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-7w2c-w47h-789w
3
reference_url https://github.com/doorkeeper-gem/doorkeeper
reference_id
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/doorkeeper-gem/doorkeeper
4
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/doorkeeper/CVE-2023-34246.yml
reference_id
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/doorkeeper/CVE-2023-34246.yml
5
reference_url https://lists.debian.org/debian-lts-announce/2024/12/msg00010.html
reference_id
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2024/12/msg00010.html
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-34246
reference_id
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-34246
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038950
reference_id 1038950
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038950
8
reference_url https://github.com/doorkeeper-gem/doorkeeper/issues/1589
reference_id 1589
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-03T23:12:01Z/
url https://github.com/doorkeeper-gem/doorkeeper/issues/1589
9
reference_url https://github.com/doorkeeper-gem/doorkeeper/pull/1646
reference_id 1646
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-03T23:12:01Z/
url https://github.com/doorkeeper-gem/doorkeeper/pull/1646
10
reference_url https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-7w2c-w47h-789w
reference_id GHSA-7w2c-w47h-789w
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-03T23:12:01Z/
url https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-7w2c-w47h-789w
11
reference_url https://lists.debian.org/debian-lts-announce/2023/07/msg00016.html
reference_id msg00016.html
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-03T23:12:01Z/
url https://lists.debian.org/debian-lts-announce/2023/07/msg00016.html
12
reference_url https://www.rfc-editor.org/rfc/rfc8252#section-8.6
reference_id rfc8252#section-8.6
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-03T23:12:01Z/
url https://www.rfc-editor.org/rfc/rfc8252#section-8.6
13
reference_url https://usn.ubuntu.com/6210-1/
reference_id USN-6210-1
reference_type
scores
url https://usn.ubuntu.com/6210-1/
14
reference_url https://github.com/doorkeeper-gem/doorkeeper/releases/tag/v5.6.6
reference_id v5.6.6
reference_type
scores
0
value 4.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-03T23:12:01Z/
url https://github.com/doorkeeper-gem/doorkeeper/releases/tag/v5.6.6
fixed_packages
0
url pkg:gem/doorkeeper@5.6.6
purl pkg:gem/doorkeeper@5.6.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.6.6
aliases CVE-2023-34246, GHSA-7w2c-w47h-789w
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4hfe-zz1b-pbcz
1
url VCID-kwt1-5aw9-a7eu
vulnerability_id VCID-kwt1-5aw9-a7eu
summary Exposure of Sensitive Information to an Unauthorized Actor in Doorkeeper
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-10187
reference_id
reference_type
scores
0
value 0.00425
scoring_system epss
scoring_elements 0.62772
published_at 2026-06-14T12:55:00Z
1
value 0.00425
scoring_system epss
scoring_elements 0.62662
published_at 2026-06-11T12:55:00Z
2
value 0.00425
scoring_system epss
scoring_elements 0.62764
published_at 2026-06-12T12:55:00Z
3
value 0.00425
scoring_system epss
scoring_elements 0.62777
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-10187
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10187
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10187
2
reference_url https://github.com/doorkeeper-gem/doorkeeper/commit/25d038022c2fcad45af5b73f9d003cf38ff491f6
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/doorkeeper-gem/doorkeeper/commit/25d038022c2fcad45af5b73f9d003cf38ff491f6
3
reference_url https://github.com/doorkeeper-gem/doorkeeper/releases
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/doorkeeper-gem/doorkeeper/releases
4
reference_url https://github.com/rubysec/ruby-advisory-db/pull/446
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/pull/446
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959903
reference_id 959903
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959903
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-10187
reference_id CVE-2020-10187
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-10187
7
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/doorkeeper/CVE-2020-10187.yml
reference_id CVE-2020-10187.YML
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/doorkeeper/CVE-2020-10187.yml
8
reference_url https://github.com/advisories/GHSA-j7vx-8mqj-cqp9
reference_id GHSA-j7vx-8mqj-cqp9
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j7vx-8mqj-cqp9
9
reference_url https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-j7vx-8mqj-cqp9
reference_id GHSA-j7vx-8mqj-cqp9
reference_type
scores
0
value 5.4
scoring_system cvssv3
scoring_elements
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-j7vx-8mqj-cqp9
fixed_packages
0
url pkg:gem/doorkeeper@5.1.1
purl pkg:gem/doorkeeper@5.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.1.1
1
url pkg:gem/doorkeeper@5.2.0.rc1
purl pkg:gem/doorkeeper@5.2.0.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
1
vulnerability VCID-kwt1-5aw9-a7eu
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.2.0.rc1
2
url pkg:gem/doorkeeper@5.2.5
purl pkg:gem/doorkeeper@5.2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.2.5
3
url pkg:gem/doorkeeper@5.3.2
purl pkg:gem/doorkeeper@5.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.3.2
4
url pkg:gem/doorkeeper@5.4.0.rc1
purl pkg:gem/doorkeeper@5.4.0.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
1
vulnerability VCID-kwt1-5aw9-a7eu
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.4.0.rc1
aliases CVE-2020-10187, GHSA-j7vx-8mqj-cqp9
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kwt1-5aw9-a7eu
Fixing_vulnerabilities
0
url VCID-kwt1-5aw9-a7eu
vulnerability_id VCID-kwt1-5aw9-a7eu
summary Exposure of Sensitive Information to an Unauthorized Actor in Doorkeeper
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-10187
reference_id
reference_type
scores
0
value 0.00425
scoring_system epss
scoring_elements 0.62772
published_at 2026-06-14T12:55:00Z
1
value 0.00425
scoring_system epss
scoring_elements 0.62662
published_at 2026-06-11T12:55:00Z
2
value 0.00425
scoring_system epss
scoring_elements 0.62764
published_at 2026-06-12T12:55:00Z
3
value 0.00425
scoring_system epss
scoring_elements 0.62777
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-10187
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10187
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10187
2
reference_url https://github.com/doorkeeper-gem/doorkeeper/commit/25d038022c2fcad45af5b73f9d003cf38ff491f6
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/doorkeeper-gem/doorkeeper/commit/25d038022c2fcad45af5b73f9d003cf38ff491f6
3
reference_url https://github.com/doorkeeper-gem/doorkeeper/releases
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/doorkeeper-gem/doorkeeper/releases
4
reference_url https://github.com/rubysec/ruby-advisory-db/pull/446
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/pull/446
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959903
reference_id 959903
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959903
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-10187
reference_id CVE-2020-10187
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-10187
7
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/doorkeeper/CVE-2020-10187.yml
reference_id CVE-2020-10187.YML
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/doorkeeper/CVE-2020-10187.yml
8
reference_url https://github.com/advisories/GHSA-j7vx-8mqj-cqp9
reference_id GHSA-j7vx-8mqj-cqp9
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j7vx-8mqj-cqp9
9
reference_url https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-j7vx-8mqj-cqp9
reference_id GHSA-j7vx-8mqj-cqp9
reference_type
scores
0
value 5.4
scoring_system cvssv3
scoring_elements
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-j7vx-8mqj-cqp9
fixed_packages
0
url pkg:gem/doorkeeper@5.0.3
purl pkg:gem/doorkeeper@5.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.0.3
1
url pkg:gem/doorkeeper@5.1.0.rc1
purl pkg:gem/doorkeeper@5.1.0.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
1
vulnerability VCID-kwt1-5aw9-a7eu
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.1.0.rc1
2
url pkg:gem/doorkeeper@5.1.1
purl pkg:gem/doorkeeper@5.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.1.1
3
url pkg:gem/doorkeeper@5.2.0.rc1
purl pkg:gem/doorkeeper@5.2.0.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
1
vulnerability VCID-kwt1-5aw9-a7eu
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.2.0.rc1
4
url pkg:gem/doorkeeper@5.2.5
purl pkg:gem/doorkeeper@5.2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.2.5
5
url pkg:gem/doorkeeper@5.3.2
purl pkg:gem/doorkeeper@5.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.3.2
6
url pkg:gem/doorkeeper@5.4.0.rc1
purl pkg:gem/doorkeeper@5.4.0.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hfe-zz1b-pbcz
1
vulnerability VCID-kwt1-5aw9-a7eu
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.4.0.rc1
aliases CVE-2020-10187, GHSA-j7vx-8mqj-cqp9
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kwt1-5aw9-a7eu
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@5.1.0.rc1