Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/otrs2@6.0.29-1?distro=bullseye

Type deb

Namespace debian

Name otrs2

Version 6.0.29-1

Qualifiers

distro	bullseye

Subpath

Is_vulnerable false

Next_non_vulnerable_version 6.0.30-1

Latest_non_vulnerable_version 6.0.32-6

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-79tb-zy1a-tqaf

vulnerability_id VCID-79tb-zy1a-tqaf

summary When an agent user is renamed or set to invalid the session belonging to the user is keept active. The session can not be used to access ticket data in the case the agent is invalid. This issue affects ((OTRS)) Community Edition: 6.0.28 and prior versions. OTRS: 7.0.18 and prior versions, 8.0.4. and prior versions.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-1776

reference_id

reference_type

scores

value	0.00326
scoring_system	epss
scoring_elements	0.55638
published_at	2026-04-21T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55478
published_at	2026-04-01T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55589
published_at	2026-04-02T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55614
published_at	2026-04-04T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55592
published_at	2026-04-07T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55643
published_at	2026-04-08T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55646
published_at	2026-04-09T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55655
published_at	2026-04-16T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55635
published_at	2026-04-12T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55617
published_at	2026-04-13T12:55:00Z

value	0.00326
scoring_system	epss
scoring_elements	0.55659
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-1776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1776

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

fixed_packages

url	pkg:deb/debian/otrs2@6.0.29-1?distro=bullseye
purl	pkg:deb/debian/otrs2@6.0.29-1?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/otrs2@6.0.29-1%3Fdistro=bullseye

url	pkg:deb/debian/otrs2@6.0.32-6?distro=bullseye
purl	pkg:deb/debian/otrs2@6.0.32-6?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/otrs2@6.0.32-6%3Fdistro=bullseye

aliases CVE-2020-1776

risk_score 0.9

exploitability 0.5

weighted_severity 1.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-79tb-zy1a-tqaf

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/otrs2@6.0.29-1%3Fdistro=bullseye

Package Instance