Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/exim4@4.96-4?distro=trixie

Type deb

Namespace debian

Name exim4

Version 4.96-4

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.96-7

Latest_non_vulnerable_version 4.99.1-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-6dwr-t9kn-2yfn

vulnerability_id VCID-6dwr-t9kn-2yfn

summary A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The manipulation leads to use after free. The name of the patch is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2. It is recommended to apply a patch to fix this issue. The identifier VDB-211073 was assigned to this vulnerability.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3559

reference_id

reference_type

scores

value	0.00658
scoring_system	epss
scoring_elements	0.71002
published_at	2026-04-02T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.7102
published_at	2026-04-04T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.70994
published_at	2026-04-07T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.71037
published_at	2026-04-08T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.71052
published_at	2026-04-09T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.71075
published_at	2026-04-11T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.7106
published_at	2026-04-12T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.71042
published_at	2026-04-13T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.71089
published_at	2026-04-16T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.71096
published_at	2026-04-18T12:55:00Z

value	0.00658
scoring_system	epss
scoring_elements	0.71076
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3559

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3559
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3559

reference_url

https://git.exim.org/exim.git/commit/4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2

reference_id

4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:08:41Z/

url

https://git.exim.org/exim.git/commit/4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EIH4W5R7SHTUEQFWWKB4TUO5YFZX64KV/

reference_id

EIH4W5R7SHTUEQFWWKB4TUO5YFZX64KV

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:08:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EIH4W5R7SHTUEQFWWKB4TUO5YFZX64KV/

reference_url

https://vuldb.com/?id.211073

reference_id

?id.211073

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:08:41Z/

url

https://vuldb.com/?id.211073

reference_url

https://bugs.exim.org/show_bug.cgi?id=2915

reference_id

show_bug.cgi?id=2915

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:08:41Z/

url

https://bugs.exim.org/show_bug.cgi?id=2915

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMQ6OCKPNPBPSD37YR4FOWV2R54M2UEP/

reference_id

TMQ6OCKPNPBPSD37YR4FOWV2R54M2UEP

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:08:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMQ6OCKPNPBPSD37YR4FOWV2R54M2UEP/

reference_url	https://usn.ubuntu.com/5741-1/
reference_id	USN-5741-1
reference_type
scores
url	https://usn.ubuntu.com/5741-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WFHLZVHNNO2GWYP5EA4TZQZ5O4GVPARR/

reference_id

WFHLZVHNNO2GWYP5EA4TZQZ5O4GVPARR

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:08:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WFHLZVHNNO2GWYP5EA4TZQZ5O4GVPARR/

fixed_packages

url	pkg:deb/debian/exim4@4.94.2-7%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/exim4@4.94.2-7%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.94.2-7%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/exim4@4.94.2-7%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/exim4@4.94.2-7%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.94.2-7%252Bdeb11u4%3Fdistro=trixie

url	pkg:deb/debian/exim4@4.96-4?distro=trixie
purl	pkg:deb/debian/exim4@4.96-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.96-4%3Fdistro=trixie

url	pkg:deb/debian/exim4@4.96-15%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/exim4@4.96-15%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.96-15%252Bdeb12u7%3Fdistro=trixie

url	pkg:deb/debian/exim4@4.98.2-1?distro=trixie
purl	pkg:deb/debian/exim4@4.98.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.98.2-1%3Fdistro=trixie

url	pkg:deb/debian/exim4@4.99.1-1?distro=trixie
purl	pkg:deb/debian/exim4@4.99.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.99.1-1%3Fdistro=trixie

aliases CVE-2022-3559

risk_score 2.0

exploitability 0.5

weighted_severity 4.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6dwr-t9kn-2yfn

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/exim4@4.96-4%3Fdistro=trixie

Package Instance