Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/asterisk@1:1.4.13~dfsg-1?distro=sid
Typedeb
Namespacedebian
Nameasterisk
Version1:1.4.13~dfsg-1
Qualifiers
distro sid
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version1:1.4.15~dfsg-1
Latest_non_vulnerable_version1:22.9.0+dfsg+~cs6.16.60671434-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-c765-b3fs-nbdu
vulnerability_id VCID-c765-b3fs-nbdu
summary Multiple buffer overflows in the voicemail functionality in Asterisk 1.4.x before 1.4.13, when using IMAP storage, might allow (1) remote attackers to execute arbitrary code via a long combination of Content-type and Content-description headers, or (2) local users to execute arbitrary code via a long combination of astspooldir, voicemail context, and voicemail mailbox fields. NOTE: vector 2 requires write access to Asterisk configuration files.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-5358
reference_id
reference_type
scores
0
value 0.00689
scoring_system epss
scoring_elements 0.71792
published_at 2026-04-21T12:55:00Z
1
value 0.00689
scoring_system epss
scoring_elements 0.71761
published_at 2026-04-13T12:55:00Z
2
value 0.00689
scoring_system epss
scoring_elements 0.71804
published_at 2026-04-16T12:55:00Z
3
value 0.00689
scoring_system epss
scoring_elements 0.7181
published_at 2026-04-18T12:55:00Z
4
value 0.00689
scoring_system epss
scoring_elements 0.7176
published_at 2026-04-08T12:55:00Z
5
value 0.00689
scoring_system epss
scoring_elements 0.71771
published_at 2026-04-09T12:55:00Z
6
value 0.00689
scoring_system epss
scoring_elements 0.71796
published_at 2026-04-11T12:55:00Z
7
value 0.00689
scoring_system epss
scoring_elements 0.71779
published_at 2026-04-12T12:55:00Z
8
value 0.0081
scoring_system epss
scoring_elements 0.74177
published_at 2026-04-07T12:55:00Z
9
value 0.0081
scoring_system epss
scoring_elements 0.74205
published_at 2026-04-04T12:55:00Z
10
value 0.0081
scoring_system epss
scoring_elements 0.74172
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-5358
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5358
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5358
fixed_packages
0
url pkg:deb/debian/asterisk@1:1.4.13~dfsg-1?distro=sid
purl pkg:deb/debian/asterisk@1:1.4.13~dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.13~dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u4?distro=sid
purl pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u4?distro=sid
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-r54j-ydjm-4uca
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u4%3Fdistro=sid
2
url pkg:deb/debian/asterisk@1:22.8.2%2Bdfsg%2B~cs6.15.60671435-1?distro=sid
purl pkg:deb/debian/asterisk@1:22.8.2%2Bdfsg%2B~cs6.15.60671435-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.8.2%252Bdfsg%252B~cs6.15.60671435-1%3Fdistro=sid
3
url pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1?distro=sid
purl pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1%3Fdistro=sid
aliases CVE-2007-5358
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c765-b3fs-nbdu
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.13~dfsg-1%3Fdistro=sid