Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/python3.12@3.12.12-2?arch=el8_10

Type rpm

Namespace redhat

Name python3.12

Version 3.12.12-2

Qualifiers

arch	el8_10

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-8dtv-379a-wqfs

vulnerability_id

VCID-8dtv-379a-wqfs

summary

cpython: Excessive read buffering DoS in http.client

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13836.json

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13836.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-13836

reference_id

reference_type

scores

value	0.00196
scoring_system	epss
scoring_elements	0.41585
published_at	2026-04-02T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41518
published_at	2026-04-21T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41613
published_at	2026-04-04T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41539
published_at	2026-04-07T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41589
published_at	2026-04-08T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41599
published_at	2026-04-09T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41621
published_at	2026-04-11T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41587
published_at	2026-04-12T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41574
published_at	2026-04-13T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.4162
published_at	2026-04-16T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41594
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-13836

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13836
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13836

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126783
reference_id	1126783
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126783

reference_url

https://github.com/python/cpython/issues/119451

reference_id

119451

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/issues/119451

reference_url

https://github.com/python/cpython/pull/119454

reference_id

119454

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/pull/119454

reference_url

https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628

reference_id

14b1fdb0a94b96f86fc7b86671ea9582b8676628

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2418078
reference_id	2418078
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2418078

reference_url

https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15

reference_id

289f29b0fe38baf2d7cb5854f4bb573cc34a6a15

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15

reference_url

https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155

reference_id

4ce27904b597c77d74dd93f2c912676021a99155

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155

reference_url

https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5

reference_id

5a4c4a033a4a54481be6870aa1896fad732555b5

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5

reference_url

https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0

reference_id

5dc101675fd22918facbbe0fecdc821502beaaf0

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0

reference_url

https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c

reference_id

afc40bdd3dd71f343fd9016f6d8eebbacbd6587c

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/

reference_id

OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/

reference_url	https://access.redhat.com/errata/RHSA-2026:1374
reference_id	RHSA-2026:1374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1374

reference_url	https://access.redhat.com/errata/RHSA-2026:1408
reference_id	RHSA-2026:1408
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1408

reference_url	https://access.redhat.com/errata/RHSA-2026:1410
reference_id	RHSA-2026:1410
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1410

reference_url	https://access.redhat.com/errata/RHSA-2026:1736
reference_id	RHSA-2026:1736
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1736

reference_url	https://access.redhat.com/errata/RHSA-2026:1828
reference_id	RHSA-2026:1828
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1828

reference_url	https://access.redhat.com/errata/RHSA-2026:1892
reference_id	RHSA-2026:1892
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1892

reference_url	https://access.redhat.com/errata/RHSA-2026:1893
reference_id	RHSA-2026:1893
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1893

reference_url	https://access.redhat.com/errata/RHSA-2026:1922
reference_id	RHSA-2026:1922
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1922

reference_url	https://access.redhat.com/errata/RHSA-2026:2084
reference_id	RHSA-2026:2084
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2084

reference_url	https://access.redhat.com/errata/RHSA-2026:2233
reference_id	RHSA-2026:2233
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2233

reference_url	https://access.redhat.com/errata/RHSA-2026:2419
reference_id	RHSA-2026:2419
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2419

reference_url	https://access.redhat.com/errata/RHSA-2026:2563
reference_id	RHSA-2026:2563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2563

reference_url	https://access.redhat.com/errata/RHSA-2026:3897
reference_id	RHSA-2026:3897
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3897

reference_url	https://access.redhat.com/errata/RHSA-2026:3900
reference_id	RHSA-2026:3900
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3900

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:7443
reference_id	RHSA-2026:7443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7443

reference_url	https://access.redhat.com/errata/RHSA-2026:7661
reference_id	RHSA-2026:7661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7661

reference_url	https://access.redhat.com/errata/RHSA-2026:8746
reference_id	RHSA-2026:8746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8746

reference_url	https://access.redhat.com/errata/RHSA-2026:8747
reference_id	RHSA-2026:8747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8747

reference_url	https://access.redhat.com/errata/RHSA-2026:8748
reference_id	RHSA-2026:8748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8748

reference_url	https://access.redhat.com/errata/RHSA-2026:8822
reference_id	RHSA-2026:8822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8822

reference_url	https://access.redhat.com/errata/RHSA-2026:8824
reference_id	RHSA-2026:8824
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8824

reference_url	https://usn.ubuntu.com/7951-1/
reference_id	USN-7951-1
reference_type
scores
url	https://usn.ubuntu.com/7951-1/

fixed_packages

aliases

CVE-2025-13836

risk_score

3.0

exploitability

0.5

weighted_severity

6.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-8dtv-379a-wqfs

Fixing_vulnerabilities

Risk_score 3.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12@3.12.12-2%3Farch=el8_10

Package Instance