Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:nuget/System.Text.RegularExpressions@4.3.1

Type nuget

Namespace

Name System.Text.RegularExpressions

Version 4.3.1

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-bczw-w56v-n7dx

vulnerability_id VCID-bczw-w56v-n7dx

summary

Uncontrolled Resource Consumption
A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework and .NET Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0980, CVE-2019-0981.

references

reference_url

https://access.redhat.com/errata/RHSA-2019:1259

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2019:1259

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0820.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0820.json

reference_url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1705506
reference_id	1705506
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1705506

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-0820

reference_id

CVE-2019-0820

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2019-0820

reference_url	https://github.com/advisories/GHSA-cmhx-cq75-c4mj
reference_id	GHSA-cmhx-cq75-c4mj
reference_type
scores
url	https://github.com/advisories/GHSA-cmhx-cq75-c4mj

reference_url	https://access.redhat.com/errata/RHSA-2019:1236
reference_id	RHSA-2019:1236
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:1236

fixed_packages

url	pkg:nuget/System.Text.RegularExpressions@4.3.1
purl	pkg:nuget/System.Text.RegularExpressions@4.3.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/System.Text.RegularExpressions@4.3.1

aliases CVE-2019-0820, GHSA-cmhx-cq75-c4mj

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bczw-w56v-n7dx

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/System.Text.RegularExpressions@4.3.1

Package Instance