Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/pdns@4.0.3-1%2Bdeb9u5

Type deb

Namespace debian

Name pdns

Version 4.0.3-1+deb9u5

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 4.1.6-3+deb10u1

Latest_non_vulnerable_version 4.1.6-3+deb10u1

Affected_by_vulnerabilities

url VCID-n8kr-mt65-13gj

vulnerability_id VCID-n8kr-mt65-13gj

summary insufficient validation

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-3871

reference_id

reference_type

scores

value	0.00026
scoring_system	epss
scoring_elements	0.07747
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-3871

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3871
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3871

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924966
reference_id	924966
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924966

reference_url	https://security.archlinux.org/ASA-201903-13
reference_id	ASA-201903-13
reference_type
scores
url	https://security.archlinux.org/ASA-201903-13

reference_url

https://security.archlinux.org/AVG-927

reference_id

AVG-927

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-927

fixed_packages

url	pkg:deb/debian/pdns@4.1.6-3%2Bdeb10u1
purl	pkg:deb/debian/pdns@4.1.6-3%2Bdeb10u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@4.1.6-3%252Bdeb10u1

aliases CVE-2019-3871

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n8kr-mt65-13gj

url VCID-qg7g-sudd-hue1

vulnerability_id VCID-qg7g-sudd-hue1

summary arbitrary code execution

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-1046

reference_id

reference_type

scores

value	3e-05
scoring_system	epss
scoring_elements	0.00072
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-1046

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1046
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1046

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898255
reference_id	898255
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898255

reference_url	https://security.archlinux.org/ASA-201805-1
reference_id	ASA-201805-1
reference_type
scores
url	https://security.archlinux.org/ASA-201805-1

reference_url

https://security.archlinux.org/AVG-686

reference_id

AVG-686

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-686

fixed_packages

url	pkg:deb/debian/pdns@4.1.6-3%2Bdeb10u1
purl	pkg:deb/debian/pdns@4.1.6-3%2Bdeb10u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@4.1.6-3%252Bdeb10u1

aliases CVE-2018-1046

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qg7g-sudd-hue1

Fixing_vulnerabilities

url VCID-n8kr-mt65-13gj

vulnerability_id VCID-n8kr-mt65-13gj

summary insufficient validation

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-3871

reference_id

reference_type

scores

value	0.00026
scoring_system	epss
scoring_elements	0.07747
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-3871

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3871
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3871

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924966
reference_id	924966
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924966

reference_url	https://security.archlinux.org/ASA-201903-13
reference_id	ASA-201903-13
reference_type
scores
url	https://security.archlinux.org/ASA-201903-13

reference_url

https://security.archlinux.org/AVG-927

reference_id

AVG-927

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-927

fixed_packages

url pkg:deb/debian/pdns@4.0.3-1%2Bdeb9u5

purl pkg:deb/debian/pdns@4.0.3-1%2Bdeb9u5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-n8kr-mt65-13gj

vulnerability	VCID-qg7g-sudd-hue1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@4.0.3-1%252Bdeb9u5

url	pkg:deb/debian/pdns@4.1.6-3%2Bdeb10u1
purl	pkg:deb/debian/pdns@4.1.6-3%2Bdeb10u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@4.1.6-3%252Bdeb10u1

aliases CVE-2019-3871

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n8kr-mt65-13gj

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@4.0.3-1%252Bdeb9u5

Package Instance