Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/dcraw@9.28-2
Typedeb
Namespacedebian
Namedcraw
Version9.28-2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version9.28-3
Latest_non_vulnerable_version9.28-3
Affected_by_vulnerabilities
0
url VCID-jk4d-p93b-53cg
vulnerability_id VCID-jk4d-p93b-53cg
summary dcraw: Buffer overflow caused by integer-overflow in foveon_load_camf()
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3624.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3624.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3624
reference_id
reference_type
scores
0
value 0.00241
scoring_system epss
scoring_elements 0.47354
published_at 2026-04-01T12:55:00Z
1
value 0.00241
scoring_system epss
scoring_elements 0.47417
published_at 2026-04-26T12:55:00Z
2
value 0.00241
scoring_system epss
scoring_elements 0.4742
published_at 2026-04-21T12:55:00Z
3
value 0.00241
scoring_system epss
scoring_elements 0.47408
published_at 2026-04-24T12:55:00Z
4
value 0.00241
scoring_system epss
scoring_elements 0.47389
published_at 2026-04-02T12:55:00Z
5
value 0.00241
scoring_system epss
scoring_elements 0.47411
published_at 2026-04-04T12:55:00Z
6
value 0.00241
scoring_system epss
scoring_elements 0.4736
published_at 2026-04-07T12:55:00Z
7
value 0.00241
scoring_system epss
scoring_elements 0.47415
published_at 2026-04-08T12:55:00Z
8
value 0.00241
scoring_system epss
scoring_elements 0.47414
published_at 2026-04-09T12:55:00Z
9
value 0.00241
scoring_system epss
scoring_elements 0.47437
published_at 2026-04-11T12:55:00Z
10
value 0.00241
scoring_system epss
scoring_elements 0.47412
published_at 2026-04-12T12:55:00Z
11
value 0.00241
scoring_system epss
scoring_elements 0.47418
published_at 2026-04-13T12:55:00Z
12
value 0.00241
scoring_system epss
scoring_elements 0.47477
published_at 2026-04-16T12:55:00Z
13
value 0.00241
scoring_system epss
scoring_elements 0.47469
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3624
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3624
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3624
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1968040
reference_id 1968040
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1968040
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984761
reference_id 984761
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984761
6
reference_url https://security.archlinux.org/AVG-2111
reference_id AVG-2111
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2111
fixed_packages
0
url pkg:deb/debian/dcraw@9.28-3
purl pkg:deb/debian/dcraw@9.28-3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dcraw@9.28-3
aliases CVE-2021-3624
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jk4d-p93b-53cg
Fixing_vulnerabilities
0
url VCID-5qx5-u16v-vfgz
vulnerability_id VCID-5qx5-u16v-vfgz
summary 
Multiple vulnerabilities have been found in LibRaw, the worst of
    which may allow attackers to execute arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8366.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8366.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-8366
reference_id
reference_type
scores
0
value 0.0127
scoring_system epss
scoring_elements 0.79551
published_at 2026-04-24T12:55:00Z
1
value 0.0127
scoring_system epss
scoring_elements 0.79557
published_at 2026-04-26T12:55:00Z
2
value 0.01277
scoring_system epss
scoring_elements 0.79533
published_at 2026-04-04T12:55:00Z
3
value 0.01277
scoring_system epss
scoring_elements 0.79519
published_at 2026-04-07T12:55:00Z
4
value 0.01277
scoring_system epss
scoring_elements 0.79547
published_at 2026-04-08T12:55:00Z
5
value 0.01277
scoring_system epss
scoring_elements 0.79555
published_at 2026-04-09T12:55:00Z
6
value 0.01277
scoring_system epss
scoring_elements 0.79503
published_at 2026-04-01T12:55:00Z
7
value 0.01277
scoring_system epss
scoring_elements 0.7956
published_at 2026-04-12T12:55:00Z
8
value 0.01277
scoring_system epss
scoring_elements 0.79552
published_at 2026-04-13T12:55:00Z
9
value 0.01277
scoring_system epss
scoring_elements 0.79582
published_at 2026-04-16T12:55:00Z
10
value 0.01277
scoring_system epss
scoring_elements 0.7958
published_at 2026-04-18T12:55:00Z
11
value 0.01277
scoring_system epss
scoring_elements 0.79585
published_at 2026-04-21T12:55:00Z
12
value 0.01277
scoring_system epss
scoring_elements 0.79577
published_at 2026-04-11T12:55:00Z
13
value 0.01277
scoring_system epss
scoring_elements 0.7951
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-8366
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8366
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8366
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:P/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1287056
reference_id 1287056
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1287056
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=806809
reference_id 806809
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=806809
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864168
reference_id 864168
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864168
7
reference_url https://security.archlinux.org/AVG-92
reference_id AVG-92
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-92
8
reference_url https://security.gentoo.org/glsa/201701-60
reference_id GLSA-201701-60
reference_type
scores
url https://security.gentoo.org/glsa/201701-60
9
reference_url https://usn.ubuntu.com/3492-1/
reference_id USN-3492-1
reference_type
scores
url https://usn.ubuntu.com/3492-1/
fixed_packages
0
url pkg:deb/debian/dcraw@9.28-2
purl pkg:deb/debian/dcraw@9.28-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-jk4d-p93b-53cg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dcraw@9.28-2
aliases CVE-2015-8366
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5qx5-u16v-vfgz
1
url VCID-c7f1-d627-z3dm
vulnerability_id VCID-c7f1-d627-z3dm
summary 
Multiple vulnerabilities have been found in LibRaw and libkdcraw,
    the worst of which may lead to arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1438.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1438.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-1438
reference_id
reference_type
scores
0
value 0.00479
scoring_system epss
scoring_elements 0.64948
published_at 2026-04-01T12:55:00Z
1
value 0.00479
scoring_system epss
scoring_elements 0.64987
published_at 2026-04-07T12:55:00Z
2
value 0.00479
scoring_system epss
scoring_elements 0.65037
published_at 2026-04-08T12:55:00Z
3
value 0.00479
scoring_system epss
scoring_elements 0.65051
published_at 2026-04-09T12:55:00Z
4
value 0.00479
scoring_system epss
scoring_elements 0.65069
published_at 2026-04-11T12:55:00Z
5
value 0.00479
scoring_system epss
scoring_elements 0.65058
published_at 2026-04-12T12:55:00Z
6
value 0.00479
scoring_system epss
scoring_elements 0.65031
published_at 2026-04-13T12:55:00Z
7
value 0.00479
scoring_system epss
scoring_elements 0.64997
published_at 2026-04-02T12:55:00Z
8
value 0.00479
scoring_system epss
scoring_elements 0.65024
published_at 2026-04-04T12:55:00Z
9
value 0.00512
scoring_system epss
scoring_elements 0.66492
published_at 2026-04-21T12:55:00Z
10
value 0.00512
scoring_system epss
scoring_elements 0.66516
published_at 2026-04-24T12:55:00Z
11
value 0.00512
scoring_system epss
scoring_elements 0.66532
published_at 2026-04-26T12:55:00Z
12
value 0.00512
scoring_system epss
scoring_elements 0.6649
published_at 2026-04-16T12:55:00Z
13
value 0.00512
scoring_system epss
scoring_elements 0.66508
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-1438
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1438
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1438
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1002714
reference_id 1002714
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1002714
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721231
reference_id 721231
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721231
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721232
reference_id 721232
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721232
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721233
reference_id 721233
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721233
8
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721236
reference_id 721236
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721236
9
reference_url https://security.gentoo.org/glsa/201309-09
reference_id GLSA-201309-09
reference_type
scores
url https://security.gentoo.org/glsa/201309-09
10
reference_url https://usn.ubuntu.com/1964-1/
reference_id USN-1964-1
reference_type
scores
url https://usn.ubuntu.com/1964-1/
11
reference_url https://usn.ubuntu.com/1978-1/
reference_id USN-1978-1
reference_type
scores
url https://usn.ubuntu.com/1978-1/
fixed_packages
0
url pkg:deb/debian/dcraw@9.28-2
purl pkg:deb/debian/dcraw@9.28-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-jk4d-p93b-53cg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dcraw@9.28-2
aliases CVE-2013-1438
risk_score 1.0
exploitability 0.5
weighted_severity 2.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c7f1-d627-z3dm
2
url VCID-etdj-hxzh-quhz
vulnerability_id VCID-etdj-hxzh-quhz
summary dcraw: Stack-based buffer overflow in the find_green() function
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19655.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19655.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-19655
reference_id
reference_type
scores
0
value 0.00689
scoring_system epss
scoring_elements 0.71708
published_at 2026-04-07T12:55:00Z
1
value 0.00689
scoring_system epss
scoring_elements 0.71715
published_at 2026-04-02T12:55:00Z
2
value 0.00689
scoring_system epss
scoring_elements 0.71734
published_at 2026-04-04T12:55:00Z
3
value 0.00689
scoring_system epss
scoring_elements 0.71746
published_at 2026-04-08T12:55:00Z
4
value 0.00689
scoring_system epss
scoring_elements 0.71758
published_at 2026-04-09T12:55:00Z
5
value 0.00689
scoring_system epss
scoring_elements 0.71783
published_at 2026-04-11T12:55:00Z
6
value 0.00689
scoring_system epss
scoring_elements 0.71766
published_at 2026-04-12T12:55:00Z
7
value 0.00689
scoring_system epss
scoring_elements 0.71748
published_at 2026-04-13T12:55:00Z
8
value 0.00689
scoring_system epss
scoring_elements 0.71791
published_at 2026-04-16T12:55:00Z
9
value 0.00689
scoring_system epss
scoring_elements 0.71796
published_at 2026-04-18T12:55:00Z
10
value 0.00689
scoring_system epss
scoring_elements 0.71779
published_at 2026-04-21T12:55:00Z
11
value 0.00689
scoring_system epss
scoring_elements 0.71824
published_at 2026-04-24T12:55:00Z
12
value 0.00689
scoring_system epss
scoring_elements 0.71829
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-19655
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19655
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19655
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1656773
reference_id 1656773
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1656773
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=906529
reference_id 906529
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=906529
fixed_packages
0
url pkg:deb/debian/dcraw@9.28-2
purl pkg:deb/debian/dcraw@9.28-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-jk4d-p93b-53cg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dcraw@9.28-2
aliases CVE-2018-19655
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-etdj-hxzh-quhz
Risk_score3.5
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/dcraw@9.28-2