Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/mutt@1.5.13-1.1?distro=trixie

Type deb

Namespace debian

Name mutt

Version 1.5.13-1.1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 1.5.15+20070608-1

Latest_non_vulnerable_version 2.2.13-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-8mtv-crbm-m7e5

vulnerability_id VCID-8mtv-crbm-m7e5

summary Multiple mutt tempfile race conditions

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5297.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5297.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-5297

reference_id

reference_type

scores

value	0.00107
scoring_system	epss
scoring_elements	0.28941
published_at	2026-04-01T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.29016
published_at	2026-04-02T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.29066
published_at	2026-04-04T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.28874
published_at	2026-04-07T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.28942
published_at	2026-04-08T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.28984
published_at	2026-04-09T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.28988
published_at	2026-04-11T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.28944
published_at	2026-04-12T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.28895
published_at	2026-04-18T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.28919
published_at	2026-04-16T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.28848
published_at	2026-04-21T12:55:00Z

value	0.00107
scoring_system	epss
scoring_elements	0.2873
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-5297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5297

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=211085
reference_id	211085
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=211085

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396104
reference_id	396104
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396104

reference_url	https://access.redhat.com/errata/RHSA-2007:0386
reference_id	RHSA-2007:0386
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0386

reference_url	https://usn.ubuntu.com/373-1/
reference_id	USN-373-1
reference_type
scores
url	https://usn.ubuntu.com/373-1/

fixed_packages

url	pkg:deb/debian/mutt@1.5.13-1.1?distro=trixie
purl	pkg:deb/debian/mutt@1.5.13-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@1.5.13-1.1%3Fdistro=trixie

url	pkg:deb/debian/mutt@2.0.5-4.1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/mutt@2.0.5-4.1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@2.0.5-4.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/mutt@2.2.12-0.1~deb12u1?distro=trixie
purl	pkg:deb/debian/mutt@2.2.12-0.1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@2.2.12-0.1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/mutt@2.2.13-1?distro=trixie
purl	pkg:deb/debian/mutt@2.2.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@2.2.13-1%3Fdistro=trixie

aliases CVE-2006-5297

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8mtv-crbm-m7e5

url VCID-yeqc-es13-3ffr

vulnerability_id VCID-yeqc-es13-3ffr

summary The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify that temporary files have been created with restricted permissions, which might allow local users to create files with weak permissions via a race condition between the mktemp and safe_fopen function calls.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5298.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5298.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-5298

reference_id

reference_type

scores

value	0.0006
scoring_system	epss
scoring_elements	0.18745
published_at	2026-04-01T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18881
published_at	2026-04-02T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18934
published_at	2026-04-04T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18657
published_at	2026-04-07T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18736
published_at	2026-04-08T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.1879
published_at	2026-04-09T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18795
published_at	2026-04-11T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18748
published_at	2026-04-12T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18698
published_at	2026-04-13T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18647
published_at	2026-04-16T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18658
published_at	2026-04-18T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18677
published_at	2026-04-21T12:55:00Z

value	0.0006
scoring_system	epss
scoring_elements	0.18569
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-5298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5298

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396104
reference_id	396104
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396104

reference_url	https://usn.ubuntu.com/373-1/
reference_id	USN-373-1
reference_type
scores
url	https://usn.ubuntu.com/373-1/

fixed_packages

url	pkg:deb/debian/mutt@1.5.13-1.1?distro=trixie
purl	pkg:deb/debian/mutt@1.5.13-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@1.5.13-1.1%3Fdistro=trixie

url	pkg:deb/debian/mutt@2.0.5-4.1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/mutt@2.0.5-4.1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@2.0.5-4.1%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/mutt@2.2.12-0.1~deb12u1?distro=trixie
purl	pkg:deb/debian/mutt@2.2.12-0.1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@2.2.12-0.1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/mutt@2.2.13-1?distro=trixie
purl	pkg:deb/debian/mutt@2.2.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@2.2.13-1%3Fdistro=trixie

aliases CVE-2006-5298

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yeqc-es13-3ffr

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@1.5.13-1.1%3Fdistro=trixie

Package Instance