Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/libxcrypt@1:4.4.18-4?distro=trixie

Type deb

Namespace debian

Name libxcrypt

Version 1:4.4.18-4

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 1:4.4.33-2

Latest_non_vulnerable_version 1:4.5.1-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-sxmd-5tzu-hkav

vulnerability_id VCID-sxmd-5tzu-hkav

summary

Multiple vulnerabilities were found in PHP, the worst of which
    leading to remote execution of arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2483.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2483.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-2483

reference_id

reference_type

scores

value	0.06501
scoring_system	epss
scoring_elements	0.91052
published_at	2026-04-01T12:55:00Z

value	0.06501
scoring_system	epss
scoring_elements	0.91057
published_at	2026-04-02T12:55:00Z

value	0.06501
scoring_system	epss
scoring_elements	0.91066
published_at	2026-04-04T12:55:00Z

value	0.06501
scoring_system	epss
scoring_elements	0.91075
published_at	2026-04-07T12:55:00Z

value	0.06501
scoring_system	epss
scoring_elements	0.91088
published_at	2026-04-08T12:55:00Z

value	0.06501
scoring_system	epss
scoring_elements	0.91094
published_at	2026-04-09T12:55:00Z

value	0.06501
scoring_system	epss
scoring_elements	0.91102
published_at	2026-04-11T12:55:00Z

value	0.06501
scoring_system	epss
scoring_elements	0.91103
published_at	2026-04-13T12:55:00Z

value	0.06501
scoring_system	epss
scoring_elements	0.91127
published_at	2026-04-18T12:55:00Z

value	0.06501
scoring_system	epss
scoring_elements	0.9113
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-2483

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2483
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2483

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=679628
reference_id	679628
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=679628

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=715025
reference_id	715025
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=715025

reference_url	https://security.gentoo.org/glsa/201110-06
reference_id	GLSA-201110-06
reference_type
scores
url	https://security.gentoo.org/glsa/201110-06

reference_url	https://security.gentoo.org/glsa/201110-22
reference_id	GLSA-201110-22
reference_type
scores
url	https://security.gentoo.org/glsa/201110-22

reference_url	https://access.redhat.com/errata/RHSA-2011:1377
reference_id	RHSA-2011:1377
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1377

reference_url	https://access.redhat.com/errata/RHSA-2011:1378
reference_id	RHSA-2011:1378
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1378

reference_url	https://access.redhat.com/errata/RHSA-2011:1423
reference_id	RHSA-2011:1423
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1423

reference_url	https://usn.ubuntu.com/1229-1/
reference_id	USN-1229-1
reference_type
scores
url	https://usn.ubuntu.com/1229-1/

reference_url	https://usn.ubuntu.com/1231-1/
reference_id	USN-1231-1
reference_type
scores
url	https://usn.ubuntu.com/1231-1/

fixed_packages

url	pkg:deb/debian/libxcrypt@1:2.4-1.1?distro=trixie
purl	pkg:deb/debian/libxcrypt@1:2.4-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:2.4-1.1%3Fdistro=trixie

url	pkg:deb/debian/libxcrypt@1:4.4.18-4?distro=trixie
purl	pkg:deb/debian/libxcrypt@1:4.4.18-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:4.4.18-4%3Fdistro=trixie

url	pkg:deb/debian/libxcrypt@1:4.4.33-2?distro=trixie
purl	pkg:deb/debian/libxcrypt@1:4.4.33-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:4.4.33-2%3Fdistro=trixie

url	pkg:deb/debian/libxcrypt@1:4.4.38-1?distro=trixie
purl	pkg:deb/debian/libxcrypt@1:4.4.38-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:4.4.38-1%3Fdistro=trixie

url	pkg:deb/debian/libxcrypt@1:4.5.1-1?distro=trixie
purl	pkg:deb/debian/libxcrypt@1:4.5.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:4.5.1-1%3Fdistro=trixie

aliases CVE-2011-2483

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sxmd-5tzu-hkav

url VCID-t4fm-65q8-5ybs

vulnerability_id VCID-t4fm-65q8-5ybs

summary libxcrypt in SUSE openSUSE 11.0 uses the DES algorithm when the configuration specifies the MD5 algorithm, which makes it easier for attackers to conduct brute-force attacks against hashed passwords.

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00008.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00008.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00001.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00001.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-3188

reference_id

reference_type

scores

value	0.0038
scoring_system	epss
scoring_elements	0.59526
published_at	2026-04-21T12:55:00Z

value	0.0038
scoring_system	epss
scoring_elements	0.5952
published_at	2026-04-09T12:55:00Z

value	0.0038
scoring_system	epss
scoring_elements	0.59539
published_at	2026-04-11T12:55:00Z

value	0.0038
scoring_system	epss
scoring_elements	0.59523
published_at	2026-04-12T12:55:00Z

value	0.0038
scoring_system	epss
scoring_elements	0.59504
published_at	2026-04-13T12:55:00Z

value	0.0038
scoring_system	epss
scoring_elements	0.59538
published_at	2026-04-16T12:55:00Z

value	0.0038
scoring_system	epss
scoring_elements	0.59545
published_at	2026-04-18T12:55:00Z

value	0.0038
scoring_system	epss
scoring_elements	0.59507
published_at	2026-04-08T12:55:00Z

value	0.00383
scoring_system	epss
scoring_elements	0.59569
published_at	2026-04-02T12:55:00Z

value	0.00383
scoring_system	epss
scoring_elements	0.59594
published_at	2026-04-04T12:55:00Z

value	0.00383
scoring_system	epss
scoring_elements	0.59563
published_at	2026-04-07T12:55:00Z

value	0.00383
scoring_system	epss
scoring_elements	0.59496
published_at	2026-04-01T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-3188

reference_url	http://secunia.com/advisories/31096
reference_id
reference_type
scores
url	http://secunia.com/advisories/31096

reference_url	http://secunia.com/advisories/31339
reference_id
reference_type
scores
url	http://secunia.com/advisories/31339

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/43927
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/43927

reference_url	http://www.securityfocus.com/bid/30301
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/30301

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.0:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-3188

reference_id

CVE-2008-3188

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:N

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2008-3188

fixed_packages

url	pkg:deb/debian/libxcrypt@0?distro=trixie
purl	pkg:deb/debian/libxcrypt@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@0%3Fdistro=trixie

url	pkg:deb/debian/libxcrypt@1:4.4.18-4?distro=trixie
purl	pkg:deb/debian/libxcrypt@1:4.4.18-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:4.4.18-4%3Fdistro=trixie

url	pkg:deb/debian/libxcrypt@1:4.4.33-2?distro=trixie
purl	pkg:deb/debian/libxcrypt@1:4.4.33-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:4.4.33-2%3Fdistro=trixie

url	pkg:deb/debian/libxcrypt@1:4.4.38-1?distro=trixie
purl	pkg:deb/debian/libxcrypt@1:4.4.38-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:4.4.38-1%3Fdistro=trixie

url	pkg:deb/debian/libxcrypt@1:4.5.1-1?distro=trixie
purl	pkg:deb/debian/libxcrypt@1:4.5.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:4.5.1-1%3Fdistro=trixie

aliases CVE-2008-3188

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t4fm-65q8-5ybs

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxcrypt@1:4.4.18-4%3Fdistro=trixie

Package Instance