Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:gem/nokogiri@1.1.28
Typegem
Namespace
Namenokogiri
Version1.1.28
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.19.3
Latest_non_vulnerable_version1.19.3
Affected_by_vulnerabilities
0
url VCID-vy1s-s9ff-6yhy
vulnerability_id VCID-vy1s-s9ff-6yhy
summary 
Improper Restriction of Operations within the Bounds of a Memory Buffer
nokogiri mishandles namespace nodes, which allows remote attackers to cause a denial of service (out-of-bounds heap memory access) or possibly have unspecified other impact via a crafted document.
references
0
reference_url http://googlechromereleases.blogspot.com/2016/05/stable-channel-update_25.html
reference_id
reference_type
scores
url http://googlechromereleases.blogspot.com/2016/05/stable-channel-update_25.html
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-1683
reference_id
reference_type
scores
0
value 0.00989
scoring_system epss
scoring_elements 0.77167
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-1683
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1340016
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1340016
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-1683
reference_id CVE-2016-1683
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2016-1683
4
reference_url https://security.gentoo.org/glsa/201607-07
reference_id GLSA-201607-07
reference_type
scores
url https://security.gentoo.org/glsa/201607-07
5
reference_url https://usn.ubuntu.com/2992-1/
reference_id USN-2992-1
reference_type
scores
url https://usn.ubuntu.com/2992-1/
6
reference_url https://usn.ubuntu.com/3271-1/
reference_id USN-3271-1
reference_type
scores
url https://usn.ubuntu.com/3271-1/
fixed_packages
0
url pkg:gem/nokogiri@1.2.0
purl pkg:gem/nokogiri@1.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12ee-na2t-6kg5
1
vulnerability VCID-1h5h-pvc7-9yhh
2
vulnerability VCID-1ks1-3a4g-eqe7
3
vulnerability VCID-1ksa-wbqf-j7fu
4
vulnerability VCID-2ub7-t6nu-syfs
5
vulnerability VCID-4yvf-h1z3-nfd7
6
vulnerability VCID-6b72-3exf-qfhs
7
vulnerability VCID-8274-u9e9-uufm
8
vulnerability VCID-94b6-kg9t-fbee
9
vulnerability VCID-94mh-kks8-4yf4
10
vulnerability VCID-9mh9-rax2-1bbb
11
vulnerability VCID-9psz-qfqt-e3fs
12
vulnerability VCID-9xty-6acy-mub7
13
vulnerability VCID-ajrr-ueqy-2bam
14
vulnerability VCID-arq2-c738-tugt
15
vulnerability VCID-e37h-xnn4-hbcn
16
vulnerability VCID-f91q-9psx-qkaa
17
vulnerability VCID-gpcm-1wx2-guhq
18
vulnerability VCID-hmj1-53pj-2ugn
19
vulnerability VCID-jn4q-gdy9-eqa4
20
vulnerability VCID-jvbh-pnxm-9bg7
21
vulnerability VCID-jwaq-3j9v-nbde
22
vulnerability VCID-ktaj-j2nh-zug6
23
vulnerability VCID-kzy6-b4n3-m7d4
24
vulnerability VCID-m542-6h3p-gudj
25
vulnerability VCID-mhpn-9y7w-ykcd
26
vulnerability VCID-p1yd-qud5-ckbu
27
vulnerability VCID-pffr-3a27-4qgx
28
vulnerability VCID-pzwn-gux6-y3hj
29
vulnerability VCID-qysn-w1za-83ea
30
vulnerability VCID-sgvg-768f-gybf
31
vulnerability VCID-snqn-nz53-f3b7
32
vulnerability VCID-tswn-2k3y-wkhk
33
vulnerability VCID-w6ws-2kbb-bfgs
34
vulnerability VCID-zka7-1e8v-d3d7
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/nokogiri@1.2.0
aliases CVE-2016-1683
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vy1s-s9ff-6yhy
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:gem/nokogiri@1.1.28