Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/poppler@0.38.0-2?distro=trixie
Typedeb
Namespacedebian
Namepoppler
Version0.38.0-2
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version0.38.0-3
Latest_non_vulnerable_version25.03.0-11.1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-gfxh-3er7-zyam
vulnerability_id VCID-gfxh-3er7-zyam
summary xpdf: buffer over-read via crafted PDF document leads to DoS or memory leak
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12360.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12360.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-12360
reference_id
reference_type
scores
0
value 0.00351
scoring_system epss
scoring_elements 0.57463
published_at 2026-04-01T12:55:00Z
1
value 0.00351
scoring_system epss
scoring_elements 0.57547
published_at 2026-04-02T12:55:00Z
2
value 0.00351
scoring_system epss
scoring_elements 0.57568
published_at 2026-04-04T12:55:00Z
3
value 0.00351
scoring_system epss
scoring_elements 0.57543
published_at 2026-04-07T12:55:00Z
4
value 0.00351
scoring_system epss
scoring_elements 0.57596
published_at 2026-04-08T12:55:00Z
5
value 0.00351
scoring_system epss
scoring_elements 0.576
published_at 2026-04-09T12:55:00Z
6
value 0.00351
scoring_system epss
scoring_elements 0.57615
published_at 2026-04-11T12:55:00Z
7
value 0.00351
scoring_system epss
scoring_elements 0.57595
published_at 2026-04-12T12:55:00Z
8
value 0.00351
scoring_system epss
scoring_elements 0.57573
published_at 2026-04-13T12:55:00Z
9
value 0.00351
scoring_system epss
scoring_elements 0.57602
published_at 2026-04-16T12:55:00Z
10
value 0.00351
scoring_system epss
scoring_elements 0.57599
published_at 2026-04-18T12:55:00Z
11
value 0.00351
scoring_system epss
scoring_elements 0.57578
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-12360
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12360
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12360
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1850876
reference_id 1850876
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1850876
fixed_packages
0
url pkg:deb/debian/poppler@0.38.0-2?distro=trixie
purl pkg:deb/debian/poppler@0.38.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@0.38.0-2%3Fdistro=trixie
1
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2%3Fdistro=trixie
4
url pkg:deb/debian/poppler@25.03.0-11.1?distro=trixie
purl pkg:deb/debian/poppler@25.03.0-11.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-11.1%3Fdistro=trixie
aliases CVE-2019-12360
risk_score 3.2
exploitability 0.5
weighted_severity 6.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gfxh-3er7-zyam
1
url VCID-kre4-9v6u-3ked
vulnerability_id VCID-kre4-9v6u-3ked
summary poppler: NULL pointer dereference in Annot.h:AnnotPath::getCoordsLength() allows for denial of service via crafted PDF
references
0
reference_url https://access.redhat.com/errata/RHBA-2019:0327
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHBA-2019:0327
1
reference_url https://access.redhat.com/errata/RHSA-2018:3505
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3505
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10768.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10768.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-10768
reference_id
reference_type
scores
0
value 0.01853
scoring_system epss
scoring_elements 0.82945
published_at 2026-04-01T12:55:00Z
1
value 0.01853
scoring_system epss
scoring_elements 0.83049
published_at 2026-04-21T12:55:00Z
2
value 0.01853
scoring_system epss
scoring_elements 0.83008
published_at 2026-04-13T12:55:00Z
3
value 0.01853
scoring_system epss
scoring_elements 0.83047
published_at 2026-04-16T12:55:00Z
4
value 0.01853
scoring_system epss
scoring_elements 0.83046
published_at 2026-04-18T12:55:00Z
5
value 0.01853
scoring_system epss
scoring_elements 0.82961
published_at 2026-04-02T12:55:00Z
6
value 0.01853
scoring_system epss
scoring_elements 0.82974
published_at 2026-04-04T12:55:00Z
7
value 0.01853
scoring_system epss
scoring_elements 0.82971
published_at 2026-04-07T12:55:00Z
8
value 0.01853
scoring_system epss
scoring_elements 0.82996
published_at 2026-04-08T12:55:00Z
9
value 0.01853
scoring_system epss
scoring_elements 0.83003
published_at 2026-04-09T12:55:00Z
10
value 0.01853
scoring_system epss
scoring_elements 0.83019
published_at 2026-04-11T12:55:00Z
11
value 0.01853
scoring_system epss
scoring_elements 0.83012
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-10768
4
reference_url https://bugs.freedesktop.org/show_bug.cgi?id=106408
reference_id
reference_type
scores
url https://bugs.freedesktop.org/show_bug.cgi?id=106408
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10768
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10768
6
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
7
reference_url https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1576169
reference_id 1576169
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1576169
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:freedesktop:poppler:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:*:*:*:*:*:*:*:*
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_tower:3.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_tower:3.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_tower:3.3:*:*:*:*:*:*:*
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-10768
reference_id CVE-2018-10768
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
1
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2018-10768
17
reference_url https://access.redhat.com/errata/RHSA-2018:3140
reference_id RHSA-2018:3140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3140
18
reference_url https://usn.ubuntu.com/3647-1/
reference_id USN-3647-1
reference_type
scores
url https://usn.ubuntu.com/3647-1/
fixed_packages
0
url pkg:deb/debian/poppler@0.38.0-2?distro=trixie
purl pkg:deb/debian/poppler@0.38.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@0.38.0-2%3Fdistro=trixie
1
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2%3Fdistro=trixie
4
url pkg:deb/debian/poppler@25.03.0-11.1?distro=trixie
purl pkg:deb/debian/poppler@25.03.0-11.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-11.1%3Fdistro=trixie
aliases CVE-2018-10768
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kre4-9v6u-3ked
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@0.38.0-2%3Fdistro=trixie