Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:ebuild/dev-libs/libxslt@1.1.8

Type ebuild

Namespace dev-libs

Name libxslt

Version 1.1.8

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1.1.24

Latest_non_vulnerable_version 1.1.35

Affected_by_vulnerabilities

url

VCID-x5dp-mdak-gker

vulnerability_id

VCID-x5dp-mdak-gker

summary

libxslt is affected by a heap-based buffer overflow, possibly leading to
    the execution of arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2935.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2935.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-2935

reference_id

reference_type

scores

value	0.22141
scoring_system	epss
scoring_elements	0.95812
published_at	2026-04-21T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.95759
published_at	2026-04-01T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.95768
published_at	2026-04-02T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.95776
published_at	2026-04-04T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.95779
published_at	2026-04-07T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.95787
published_at	2026-04-08T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.9579
published_at	2026-04-09T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.95794
published_at	2026-04-12T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.95795
published_at	2026-04-13T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.95805
published_at	2026-04-16T12:55:00Z

value	0.22141
scoring_system	epss
scoring_elements	0.9581
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-2935

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2935
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2935

reference_url	http://secunia.com/advisories/31230
reference_id
reference_type
scores
url	http://secunia.com/advisories/31230

reference_url	http://secunia.com/advisories/31310
reference_id
reference_type
scores
url	http://secunia.com/advisories/31310

reference_url	http://secunia.com/advisories/31331
reference_id
reference_type
scores
url	http://secunia.com/advisories/31331

reference_url	http://secunia.com/advisories/31363
reference_id
reference_type
scores
url	http://secunia.com/advisories/31363

reference_url	http://secunia.com/advisories/31395
reference_id
reference_type
scores
url	http://secunia.com/advisories/31395

reference_url	http://secunia.com/advisories/31399
reference_id
reference_type
scores
url	http://secunia.com/advisories/31399

reference_url	http://secunia.com/advisories/32453
reference_id
reference_type
scores
url	http://secunia.com/advisories/32453

reference_url	http://security.gentoo.org/glsa/glsa-200808-06.xml
reference_id
reference_type
scores
url	http://security.gentoo.org/glsa/glsa-200808-06.xml

reference_url	http://securityreason.com/securityalert/4078
reference_id
reference_type
scores
url	http://securityreason.com/securityalert/4078

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/44141
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/44141

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10827
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10827

reference_url	https://www.redhat.com/archives/fedora-package-announce/2008-August/msg00092.html
reference_id
reference_type
scores
url	https://www.redhat.com/archives/fedora-package-announce/2008-August/msg00092.html

reference_url	https://www.redhat.com/archives/fedora-package-announce/2008-August/msg00118.html
reference_id
reference_type
scores
url	https://www.redhat.com/archives/fedora-package-announce/2008-August/msg00118.html

reference_url	http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0306
reference_id
reference_type
scores
url	http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0306

reference_url	http://www.debian.org/security/2008/dsa-1624
reference_id
reference_type
scores
url	http://www.debian.org/security/2008/dsa-1624

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2008:160
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2008:160

reference_url	http://www.ocert.org/advisories/ocert-2008-009.html
reference_id
reference_type
scores
url	http://www.ocert.org/advisories/ocert-2008-009.html

reference_url	http://www.ocert.org/patches/exslt_crypt.patch
reference_id
reference_type
scores
url	http://www.ocert.org/patches/exslt_crypt.patch

reference_url	http://www.redhat.com/support/errata/RHSA-2008-0649.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2008-0649.html

reference_url	http://www.scary.beasts.org/security/CESA-2008-003.html
reference_id
reference_type
scores
url	http://www.scary.beasts.org/security/CESA-2008-003.html

reference_url	http://www.securityfocus.com/archive/1/494976/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/494976/100/0/threaded

reference_url	http://www.securityfocus.com/archive/1/495018/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/495018/100/0/threaded

reference_url	http://www.securityfocus.com/archive/1/497829/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/497829/100/0/threaded

reference_url	http://www.securityfocus.com/bid/30467
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/30467

reference_url	http://www.securitytracker.com/id?1020596
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1020596

reference_url	http://www.ubuntu.com/usn/usn-633-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/usn-633-1

reference_url	http://www.vupen.com/english/advisories/2008/2266/references
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/2266/references

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=455848
reference_id	455848
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=455848

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=493162
reference_id	493162
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=493162

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.10:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.11:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.12:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.13:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.14:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.15:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.16:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.16:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.17:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.18:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.19:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.19:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.20:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.20:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.20:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.21:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.21:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.22:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.23:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.23:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.23:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.24:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.24:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.24:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.8:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.9:::::::*
reference_id	cpe:2.3:a:xmlsoft:libxslt:1.1.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxslt:1.1.9:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-2935

reference_id

CVE-2008-2935

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2008-2935

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32133.txt
reference_id	CVE-2008-2935;OSVDB-47544
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32133.txt

reference_url	https://www.securityfocus.com/bid/30467/info
reference_id	CVE-2008-2935;OSVDB-47544
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/30467/info

reference_url	https://security.gentoo.org/glsa/200808-06
reference_id	GLSA-200808-06
reference_type
scores
url	https://security.gentoo.org/glsa/200808-06

reference_url	https://access.redhat.com/errata/RHSA-2008:0649
reference_id	RHSA-2008:0649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0649

reference_url	https://usn.ubuntu.com/633-1/
reference_id	USN-633-1
reference_type
scores
url	https://usn.ubuntu.com/633-1/

fixed_packages

aliases

CVE-2008-2935

risk_score

10.0

exploitability

2.0

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-x5dp-mdak-gker

Fixing_vulnerabilities

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/libxslt@1.1.8

Package Instance