Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/libvncserver@0.9.11%2Bdfsg-1.3?distro=trixie

Type deb

Namespace debian

Name libvncserver

Version 0.9.11+dfsg-1.3

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 0.9.12+dfsg-3

Latest_non_vulnerable_version 0.9.15+dfsg-4

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-p9tk-fn6b-cbbv

vulnerability_id VCID-p9tk-fn6b-cbbv

summary libvncserver: Multiple heap out-of-bound writes in VNC client code (Incomplete fix for CVE-2018-20019)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20748.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20748.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20748

reference_id

reference_type

scores

value	0.10572
scoring_system	epss
scoring_elements	0.93246
published_at	2026-04-01T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93254
published_at	2026-04-02T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93259
published_at	2026-04-04T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93258
published_at	2026-04-07T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93267
published_at	2026-04-08T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93271
published_at	2026-04-09T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93275
published_at	2026-04-13T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93273
published_at	2026-04-12T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93292
published_at	2026-04-16T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93297
published_at	2026-04-18T12:55:00Z

value	0.10572
scoring_system	epss
scoring_elements	0.93304
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20748

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1671407
reference_id	1671407
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1671407

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920941
reference_id	920941
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920941

reference_url	https://usn.ubuntu.com/3877-1/
reference_id	USN-3877-1
reference_type
scores
url	https://usn.ubuntu.com/3877-1/

reference_url	https://usn.ubuntu.com/4547-1/
reference_id	USN-4547-1
reference_type
scores
url	https://usn.ubuntu.com/4547-1/

reference_url	https://usn.ubuntu.com/4587-1/
reference_id	USN-4587-1
reference_type
scores
url	https://usn.ubuntu.com/4587-1/

fixed_packages

url	pkg:deb/debian/libvncserver@0.9.11%2Bdfsg-1.3?distro=trixie
purl	pkg:deb/debian/libvncserver@0.9.11%2Bdfsg-1.3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.11%252Bdfsg-1.3%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.13%2Bdfsg-2%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.13%2Bdfsg-2%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.13%252Bdfsg-2%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.14%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.14%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.14%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-2?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-2%3Fdistro=trixie

url	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-3?distro=trixie
purl	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-3%3Fdistro=trixie

url	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-4?distro=trixie
purl	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-4%3Fdistro=trixie

aliases CVE-2018-20748

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p9tk-fn6b-cbbv

url VCID-qukp-tx5e-6yhe

vulnerability_id VCID-qukp-tx5e-6yhe

summary libvncserver: Heap out-of-bounds write in rfbserver.c in rfbProcessFileTransferReadBuffer() allows for potential code execution (Incomplete fix for CVE-2018-15127)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20750.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20750.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20750

reference_id

reference_type

scores

value	0.10369
scoring_system	epss
scoring_elements	0.93175
published_at	2026-04-01T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93185
published_at	2026-04-02T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93189
published_at	2026-04-04T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93187
published_at	2026-04-07T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93196
published_at	2026-04-08T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.932
published_at	2026-04-09T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93205
published_at	2026-04-11T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93202
published_at	2026-04-12T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93204
published_at	2026-04-13T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93219
published_at	2026-04-16T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93224
published_at	2026-04-18T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93232
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20750

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1671405
reference_id	1671405
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1671405

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920941
reference_id	920941
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920941

reference_url	https://usn.ubuntu.com/3877-1/
reference_id	USN-3877-1
reference_type
scores
url	https://usn.ubuntu.com/3877-1/

reference_url	https://usn.ubuntu.com/4547-1/
reference_id	USN-4547-1
reference_type
scores
url	https://usn.ubuntu.com/4547-1/

reference_url	https://usn.ubuntu.com/4587-1/
reference_id	USN-4587-1
reference_type
scores
url	https://usn.ubuntu.com/4587-1/

fixed_packages

url	pkg:deb/debian/libvncserver@0.9.11%2Bdfsg-1.3?distro=trixie
purl	pkg:deb/debian/libvncserver@0.9.11%2Bdfsg-1.3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.11%252Bdfsg-1.3%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.13%2Bdfsg-2%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.13%2Bdfsg-2%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.13%252Bdfsg-2%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.14%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.14%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.14%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-2?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-2%3Fdistro=trixie

url	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-3?distro=trixie
purl	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-3%3Fdistro=trixie

url	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-4?distro=trixie
purl	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-4%3Fdistro=trixie

aliases CVE-2018-20750

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qukp-tx5e-6yhe

url VCID-v7mt-jtes-h3bz

vulnerability_id VCID-v7mt-jtes-h3bz

summary libvncserver: Heap out-of-bounds write in rfbserver.c in rfbProcessFileTransferReadBuffer() allows for potential code execution (Incomplete fix for CVE-2018-15127)

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20749.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20749.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20749

reference_id

reference_type

scores

value	0.10369
scoring_system	epss
scoring_elements	0.93175
published_at	2026-04-01T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93185
published_at	2026-04-02T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93189
published_at	2026-04-04T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93187
published_at	2026-04-07T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93196
published_at	2026-04-08T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.932
published_at	2026-04-09T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93205
published_at	2026-04-11T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93202
published_at	2026-04-12T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93204
published_at	2026-04-13T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93219
published_at	2026-04-16T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93224
published_at	2026-04-18T12:55:00Z

value	0.10369
scoring_system	epss
scoring_elements	0.93232
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20749

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1671403
reference_id	1671403
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1671403

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920941
reference_id	920941
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920941

reference_url	https://usn.ubuntu.com/3877-1/
reference_id	USN-3877-1
reference_type
scores
url	https://usn.ubuntu.com/3877-1/

reference_url	https://usn.ubuntu.com/4547-1/
reference_id	USN-4547-1
reference_type
scores
url	https://usn.ubuntu.com/4547-1/

reference_url	https://usn.ubuntu.com/4587-1/
reference_id	USN-4587-1
reference_type
scores
url	https://usn.ubuntu.com/4587-1/

fixed_packages

url	pkg:deb/debian/libvncserver@0.9.11%2Bdfsg-1.3?distro=trixie
purl	pkg:deb/debian/libvncserver@0.9.11%2Bdfsg-1.3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.11%252Bdfsg-1.3%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.13%2Bdfsg-2%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.13%2Bdfsg-2%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.13%252Bdfsg-2%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.14%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.14%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.14%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-2?distro=trixie

purl pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-81pq-5gvp-zfgw

vulnerability	VCID-aphg-42c4-9yct

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-2%3Fdistro=trixie

url	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-3?distro=trixie
purl	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-3%3Fdistro=trixie

url	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-4?distro=trixie
purl	pkg:deb/debian/libvncserver@0.9.15%2Bdfsg-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.15%252Bdfsg-4%3Fdistro=trixie

aliases CVE-2018-20749

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v7mt-jtes-h3bz

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libvncserver@0.9.11%252Bdfsg-1.3%3Fdistro=trixie

Package Instance