Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/glibc@2.27-4?distro=trixie

Type deb

Namespace debian

Name glibc

Version 2.27-4

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 2.28-1

Latest_non_vulnerable_version 2.42-15

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-e27x-ufvw-cyec

vulnerability_id VCID-e27x-ufvw-cyec

summary glibc: Integer overflow in stdlib/canonicalize.c on 32-bit architectures leading to stack-based buffer overflow

references

reference_url	https://access.redhat.com/errata/RHBA-2019:0327
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHBA-2019:0327

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11236.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11236.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-11236

reference_id

reference_type

scores

value	0.00965
scoring_system	epss
scoring_elements	0.76503
published_at	2026-04-01T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76595
published_at	2026-04-21T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76561
published_at	2026-04-13T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76603
published_at	2026-04-16T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76607
published_at	2026-04-18T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76508
published_at	2026-04-02T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76537
published_at	2026-04-04T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.7652
published_at	2026-04-07T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76552
published_at	2026-04-08T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76563
published_at	2026-04-09T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76589
published_at	2026-04-11T12:55:00Z

value	0.00965
scoring_system	epss
scoring_elements	0.76568
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-11236

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11236
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11236

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.netapp.com/advisory/ntap-20190329-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190329-0001/

reference_url	https://security.netapp.com/advisory/ntap-20190401-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190401-0001/

reference_url	https://sourceware.org/bugzilla/show_bug.cgi?id=22786
reference_id
reference_type
scores
url	https://sourceware.org/bugzilla/show_bug.cgi?id=22786

reference_url	https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=5460617d1567657621107d895ee2dd83bc1f88f2
reference_id
reference_type
scores
url	https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=5460617d1567657621107d895ee2dd83bc1f88f2

reference_url	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
reference_id
reference_type
scores
url	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

reference_url	http://www.securityfocus.com/bid/104255
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/104255

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1581269
reference_id	1581269
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1581269

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=899071
reference_id	899071
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=899071

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnu:glibc::::::::
reference_id	cpe:2.3:a:gnu:glibc::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnu:glibc::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:data_ontap_edge:-:::::::*
reference_id	cpe:2.3:a:netapp:data_ontap_edge:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:data_ontap_edge:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software_management:-:::::::*
reference_id	cpe:2.3:a:netapp:element_software_management:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software_management:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.0.0:::::::*
reference_id	cpe:2.3:a:oracle:communications_session_border_controller:8.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.1.0:::::::*
reference_id	cpe:2.3:a:oracle:communications_session_border_controller:8.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.2.0:::::::*
reference_id	cpe:2.3:a:oracle:communications_session_border_controller:8.2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_communications_broker:3.0.0:::::::*
reference_id	cpe:2.3:a:oracle:enterprise_communications_broker:3.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_communications_broker:3.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_communications_broker:3.1.0:::::::*
reference_id	cpe:2.3:a:oracle:enterprise_communications_broker:3.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_communications_broker:3.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:::::::*
reference_id	cpe:2.3:a:redhat:virtualization_host:4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-11236

reference_id

CVE-2018-11236

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-11236

reference_url	https://access.redhat.com/errata/RHSA-2018:3092
reference_id	RHSA-2018:3092
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3092

reference_url	https://usn.ubuntu.com/4416-1/
reference_id	USN-4416-1
reference_type
scores
url	https://usn.ubuntu.com/4416-1/

reference_url	https://usn.ubuntu.com/6762-1/
reference_id	USN-6762-1
reference_type
scores
url	https://usn.ubuntu.com/6762-1/

fixed_packages

url	pkg:deb/debian/glibc@2.27-4?distro=trixie
purl	pkg:deb/debian/glibc@2.27-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.27-4%3Fdistro=trixie

url pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie

purl pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-9nqp-tfvr-ayen

vulnerability	VCID-jswq-6ru6-wybc

vulnerability	VCID-kukb-s61t-pbc3

vulnerability	VCID-nwfb-xnks-1kg7

vulnerability	VCID-ssnc-wdcf-sfc9

vulnerability	VCID-tcpv-4crc-zuap

vulnerability	VCID-us68-psx5-zude

vulnerability	VCID-zn6t-3mvb-wufm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.31-13%252Bdeb11u11%3Fdistro=trixie

url pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie

purl pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-nwfb-xnks-1kg7

vulnerability	VCID-ssnc-wdcf-sfc9

vulnerability	VCID-tcpv-4crc-zuap

vulnerability	VCID-us68-psx5-zude

vulnerability	VCID-zn6t-3mvb-wufm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-9%252Bdeb12u13%3Fdistro=trixie

url pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-nwfb-xnks-1kg7

vulnerability	VCID-us68-psx5-zude

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.41-12%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/glibc@2.42-13?distro=trixie

purl pkg:deb/debian/glibc@2.42-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-nwfb-xnks-1kg7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-13%3Fdistro=trixie

url pkg:deb/debian/glibc@2.42-14?distro=trixie

purl pkg:deb/debian/glibc@2.42-14?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-us68-psx5-zude

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-14%3Fdistro=trixie

url	pkg:deb/debian/glibc@2.42-15?distro=trixie
purl	pkg:deb/debian/glibc@2.42-15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-15%3Fdistro=trixie

aliases CVE-2018-11236

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e27x-ufvw-cyec

url VCID-uqdb-tx7y-bbbc

vulnerability_id VCID-uqdb-tx7y-bbbc

summary glibc: Buffer overflow in __mempcpy_avx512_no_vzeroupper

references

reference_url	https://access.redhat.com/errata/RHBA-2019:0327
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHBA-2019:0327

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11237.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11237.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-11237

reference_id

reference_type

scores

value	0.00797
scoring_system	epss
scoring_elements	0.73959
published_at	2026-04-01T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.74047
published_at	2026-04-21T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.74007
published_at	2026-04-13T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.74046
published_at	2026-04-16T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.74055
published_at	2026-04-18T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.73966
published_at	2026-04-02T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.73991
published_at	2026-04-04T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.73963
published_at	2026-04-07T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.73997
published_at	2026-04-08T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.7401
published_at	2026-04-09T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.74032
published_at	2026-04-11T12:55:00Z

value	0.00797
scoring_system	epss
scoring_elements	0.74014
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-11237

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11237
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11237

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.netapp.com/advisory/ntap-20190329-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190329-0001/

reference_url	https://security.netapp.com/advisory/ntap-20190401-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190401-0001/

reference_url	https://sourceware.org/bugzilla/show_bug.cgi?id=23196
reference_id
reference_type
scores
url	https://sourceware.org/bugzilla/show_bug.cgi?id=23196

reference_url	https://www.exploit-db.com/exploits/44750/
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/44750/

reference_url	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
reference_id
reference_type
scores
url	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

reference_url	http://www.securityfocus.com/bid/104256
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/104256

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1581274
reference_id	1581274
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1581274

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=899070
reference_id	899070
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=899070

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnu:glibc::::::::
reference_id	cpe:2.3:a:gnu:glibc::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnu:glibc::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:data_ontap_edge:-:::::::*
reference_id	cpe:2.3:a:netapp:data_ontap_edge:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:data_ontap_edge:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software_management:-:::::::*
reference_id	cpe:2.3:a:netapp:element_software_management:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software_management:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.0.0:::::::*
reference_id	cpe:2.3:a:oracle:communications_session_border_controller:8.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.1.0:::::::*
reference_id	cpe:2.3:a:oracle:communications_session_border_controller:8.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.2.0:::::::*
reference_id	cpe:2.3:a:oracle:communications_session_border_controller:8.2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:communications_session_border_controller:8.2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_communications_broker:3.0.0:::::::*
reference_id	cpe:2.3:a:oracle:enterprise_communications_broker:3.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_communications_broker:3.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_communications_broker:3.1.0:::::::*
reference_id	cpe:2.3:a:oracle:enterprise_communications_broker:3.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_communications_broker:3.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:::::::*
reference_id	cpe:2.3:a:redhat:virtualization_host:4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-11237

reference_id

CVE-2018-11237

reference_type

scores

value	4.6
scoring_system	cvssv2
scoring_elements	AV:L/AC:L/Au:N/C:P/I:P/A:P

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-11237

reference_url	https://access.redhat.com/errata/RHSA-2018:3092
reference_id	RHSA-2018:3092
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3092

reference_url	https://usn.ubuntu.com/4416-1/
reference_id	USN-4416-1
reference_type
scores
url	https://usn.ubuntu.com/4416-1/

fixed_packages

url	pkg:deb/debian/glibc@2.27-4?distro=trixie
purl	pkg:deb/debian/glibc@2.27-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.27-4%3Fdistro=trixie

url pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie

purl pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-9nqp-tfvr-ayen

vulnerability	VCID-jswq-6ru6-wybc

vulnerability	VCID-kukb-s61t-pbc3

vulnerability	VCID-nwfb-xnks-1kg7

vulnerability	VCID-ssnc-wdcf-sfc9

vulnerability	VCID-tcpv-4crc-zuap

vulnerability	VCID-us68-psx5-zude

vulnerability	VCID-zn6t-3mvb-wufm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.31-13%252Bdeb11u11%3Fdistro=trixie

url pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie

purl pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-nwfb-xnks-1kg7

vulnerability	VCID-ssnc-wdcf-sfc9

vulnerability	VCID-tcpv-4crc-zuap

vulnerability	VCID-us68-psx5-zude

vulnerability	VCID-zn6t-3mvb-wufm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-9%252Bdeb12u13%3Fdistro=trixie

url pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-nwfb-xnks-1kg7

vulnerability	VCID-us68-psx5-zude

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.41-12%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/glibc@2.42-13?distro=trixie

purl pkg:deb/debian/glibc@2.42-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-nwfb-xnks-1kg7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-13%3Fdistro=trixie

url pkg:deb/debian/glibc@2.42-14?distro=trixie

purl pkg:deb/debian/glibc@2.42-14?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-us68-psx5-zude

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-14%3Fdistro=trixie

url	pkg:deb/debian/glibc@2.42-15?distro=trixie
purl	pkg:deb/debian/glibc@2.42-15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-15%3Fdistro=trixie

aliases CVE-2018-11237

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uqdb-tx7y-bbbc

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.27-4%3Fdistro=trixie

Package Instance