Django REST framework
Api Root
Package List
Package Instance
Format
json
api
admin
Package Instance
Lookup for vulnerable packages by Package URL.
Purl
pkg:npm/electron@24.8.5
Type
npm
Namespace
Name
electron
Version
24.8.5
Qualifiers
Subpath
Is_vulnerable
false
Next_non_vulnerable_version
25.0.0-alpha.2
Latest_non_vulnerable_version
27.0.0-beta.8
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url
VCID-ghpk-c1e6-pkae
vulnerability_id
VCID-ghpk-c1e6-pkae
summary
Specific handling of an attacker-controlled VP8 media stream could lead to a heap buffer overflow in the content process. We are aware of this issue being exploited in other products in the wild.
references
0
reference_url
https://arstechnica.com/security/2023/09/new-0-day-in-chrome-and-firefox-is-likely-to-plague-other-software/
reference_id
reference_type
scores
url
https://arstechnica.com/security/2023/09/new-0-day-in-chrome-and-firefox-is-likely-to-plague-other-software/
1
reference_url
https://bugzilla.redhat.com/show_bug.cgi?id=2241191
reference_id
reference_type
scores
url
https://bugzilla.redhat.com/show_bug.cgi?id=2241191
2
reference_url
https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.html
reference_id
reference_type
scores
url
https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.html
3
reference_url
https://crbug.com/1486441
reference_id
reference_type
scores
url
https://crbug.com/1486441
4
reference_url
https://github.com/electron/electron/pull/40022
reference_id
reference_type
scores
url
https://github.com/electron/electron/pull/40022
5
reference_url
https://github.com/electron/electron/pull/40023
reference_id
reference_type
scores
url
https://github.com/electron/electron/pull/40023
6
reference_url
https://github.com/electron/electron/pull/40024
reference_id
reference_type
scores
url
https://github.com/electron/electron/pull/40024
7
reference_url
https://github.com/electron/electron/pull/40025
reference_id
reference_type
scores
url
https://github.com/electron/electron/pull/40025
8
reference_url
https://github.com/electron/electron/pull/40026
reference_id
reference_type
scores
url
https://github.com/electron/electron/pull/40026
9
reference_url
https://github.com/electron/electron/releases/tag/v22.3.25
reference_id
reference_type
scores
url
https://github.com/electron/electron/releases/tag/v22.3.25
10
reference_url
https://github.com/electron/electron/releases/tag/v24.8.5
reference_id
reference_type
scores
url
https://github.com/electron/electron/releases/tag/v24.8.5
11
reference_url
https://github.com/electron/electron/releases/tag/v25.8.4
reference_id
reference_type
scores
url
https://github.com/electron/electron/releases/tag/v25.8.4
12
reference_url
https://github.com/electron/electron/releases/tag/v26.2.4
reference_id
reference_type
scores
url
https://github.com/electron/electron/releases/tag/v26.2.4
13
reference_url
https://github.com/electron/electron/releases/tag/v27.0.0-beta.8
reference_id
reference_type
scores
url
https://github.com/electron/electron/releases/tag/v27.0.0-beta.8
14
reference_url
https://github.com/webmproject/libvpx/commit/3fbd1dca6a4d2dad332a2110d646e4ffef36d590
reference_id
reference_type
scores
url
https://github.com/webmproject/libvpx/commit/3fbd1dca6a4d2dad332a2110d646e4ffef36d590
15
reference_url
https://github.com/webmproject/libvpx/commit/af6dedd715f4307669366944cca6e0417b290282
reference_id
reference_type
scores
url
https://github.com/webmproject/libvpx/commit/af6dedd715f4307669366944cca6e0417b290282
16
reference_url
https://github.com/webmproject/libvpx/releases/tag/v1.13.1
reference_id
reference_type
scores
url
https://github.com/webmproject/libvpx/releases/tag/v1.13.1
17
reference_url
https://github.com/webmproject/libvpx/tags
reference_id
reference_type
scores
url
https://github.com/webmproject/libvpx/tags
18
reference_url
https://lists.debian.org/debian-lts-announce/2023/09/msg00038.html
reference_id
reference_type
scores
url
https://lists.debian.org/debian-lts-announce/2023/09/msg00038.html
19
reference_url
https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html
reference_id
reference_type
scores
url
https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html
20
reference_url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4MFWDFJSSIFKWKNOCTQCFUNZWAXUCSS4/
reference_id
reference_type
scores
url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4MFWDFJSSIFKWKNOCTQCFUNZWAXUCSS4/
21
reference_url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/55YVCZNAVY3Y5E4DWPWMX2SPKZ2E5SOV/
reference_id
reference_type
scores
url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/55YVCZNAVY3Y5E4DWPWMX2SPKZ2E5SOV/
22
reference_url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BCVSHVX2RFBU3RMCUFSATVQEJUFD4Q63/
reference_id
reference_type
scores
url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BCVSHVX2RFBU3RMCUFSATVQEJUFD4Q63/
23
reference_url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWEJYS5NC7KVFYU3OAMPKQDYN6JQGVK6/
reference_id
reference_type
scores
url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWEJYS5NC7KVFYU3OAMPKQDYN6JQGVK6/
24
reference_url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WTRUIS3564P7ZLM2S2IH4Y4KZ327LI4I/
reference_id
reference_type
scores
url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WTRUIS3564P7ZLM2S2IH4Y4KZ327LI4I/
25
reference_url
https://pastebin.com/TdkC4pDv
reference_id
reference_type
scores
url
https://pastebin.com/TdkC4pDv
26
reference_url
https://security.gentoo.org/glsa/202310-04
reference_id
reference_type
scores
url
https://security.gentoo.org/glsa/202310-04
27
reference_url
https://stackdiary.com/google-discloses-a-webm-vp8-bug-tracked-as-cve-2023-5217/
reference_id
reference_type
scores
url
https://stackdiary.com/google-discloses-a-webm-vp8-bug-tracked-as-cve-2023-5217/
28
reference_url
https://twitter.com/maddiestone/status/1707163313711497266
reference_id
reference_type
scores
url
https://twitter.com/maddiestone/status/1707163313711497266
29
reference_url
https://www.debian.org/security/2023/dsa-5508
reference_id
reference_type
scores
url
https://www.debian.org/security/2023/dsa-5508
30
reference_url
https://www.debian.org/security/2023/dsa-5509
reference_id
reference_type
scores
url
https://www.debian.org/security/2023/dsa-5509
31
reference_url
https://www.debian.org/security/2023/dsa-5510
reference_id
reference_type
scores
url
https://www.debian.org/security/2023/dsa-5510
32
reference_url
https://www.mozilla.org/en-US/security/advisories/mfsa2023-44/
reference_id
reference_type
scores
url
https://www.mozilla.org/en-US/security/advisories/mfsa2023-44/
33
reference_url
https://www.openwall.com/lists/oss-security/2023/09/28/5
reference_id
reference_type
scores
url
https://www.openwall.com/lists/oss-security/2023/09/28/5
34
reference_url
http://www.openwall.com/lists/oss-security/2023/09/28/5
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/28/5
35
reference_url
http://www.openwall.com/lists/oss-security/2023/09/28/6
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/28/6
36
reference_url
http://www.openwall.com/lists/oss-security/2023/09/29/1
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/29/1
37
reference_url
http://www.openwall.com/lists/oss-security/2023/09/29/11
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/29/11
38
reference_url
http://www.openwall.com/lists/oss-security/2023/09/29/12
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/29/12
39
reference_url
http://www.openwall.com/lists/oss-security/2023/09/29/14
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/29/14
40
reference_url
http://www.openwall.com/lists/oss-security/2023/09/29/2
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/29/2
41
reference_url
http://www.openwall.com/lists/oss-security/2023/09/29/7
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/29/7
42
reference_url
http://www.openwall.com/lists/oss-security/2023/09/29/9
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/29/9
43
reference_url
http://www.openwall.com/lists/oss-security/2023/09/30/1
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/30/1
44
reference_url
http://www.openwall.com/lists/oss-security/2023/09/30/2
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/30/2
45
reference_url
http://www.openwall.com/lists/oss-security/2023/09/30/3
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/30/3
46
reference_url
http://www.openwall.com/lists/oss-security/2023/09/30/4
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/30/4
47
reference_url
http://www.openwall.com/lists/oss-security/2023/09/30/5
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/09/30/5
48
reference_url
http://www.openwall.com/lists/oss-security/2023/10/01/1
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/10/01/1
49
reference_url
http://www.openwall.com/lists/oss-security/2023/10/01/2
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/10/01/2
50
reference_url
http://www.openwall.com/lists/oss-security/2023/10/01/5
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/10/01/5
51
reference_url
http://www.openwall.com/lists/oss-security/2023/10/02/6
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/10/02/6
52
reference_url
http://www.openwall.com/lists/oss-security/2023/10/03/11
reference_id
reference_type
scores
url
http://www.openwall.com/lists/oss-security/2023/10/03/11
53
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2023-5217
reference_id
CVE-2023-5217
reference_type
scores
url
https://nvd.nist.gov/vuln/detail/CVE-2023-5217
54
reference_url
https://security-tracker.debian.org/tracker/CVE-2023-5217
reference_id
CVE-2023-5217
reference_type
scores
url
https://security-tracker.debian.org/tracker/CVE-2023-5217
55
reference_url
https://github.com/advisories/GHSA-qqvq-6xgj-jw8g
reference_id
GHSA-qqvq-6xgj-jw8g
reference_type
scores
url
https://github.com/advisories/GHSA-qqvq-6xgj-jw8g
56
reference_url
https://www.mozilla.org/en-US/security/advisories/mfsa2023-44
reference_id
mfsa2023-44
reference_type
scores
0
value
critical
scoring_system
generic_textual
scoring_elements
url
https://www.mozilla.org/en-US/security/advisories/mfsa2023-44
fixed_packages
0
url
pkg:npm/electron@22.3.25
purl
pkg:npm/electron@22.3.25
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:npm/electron@22.3.25
1
url
pkg:npm/electron@24.8.5
purl
pkg:npm/electron@24.8.5
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:npm/electron@24.8.5
2
url
pkg:npm/electron@25.8.4
purl
pkg:npm/electron@25.8.4
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:npm/electron@25.8.4
3
url
pkg:npm/electron@26.2.4
purl
pkg:npm/electron@26.2.4
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:npm/electron@26.2.4
4
url
pkg:npm/electron@27.0.0-beta.8
purl
pkg:npm/electron@27.0.0-beta.8
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:npm/electron@27.0.0-beta.8
aliases
CVE-2023-5217, GHSA-qqvq-6xgj-jw8g
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-ghpk-c1e6-pkae
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/packages/pkg:npm/electron@24.8.5
×
Create
None
×
Edit
None