Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie

Type deb

Namespace debian

Name vsftpd

Version 3.0.5-0.5

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-3yfh-6jac-7qfd

vulnerability_id VCID-3yfh-6jac-7qfd

summary vsftpd: access restrictions bypass

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1419.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1419.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-1419

reference_id

reference_type

scores

value	0.72026
scoring_system	epss
scoring_elements	0.98736
published_at	2026-04-02T12:55:00Z

value	0.72026
scoring_system	epss
scoring_elements	0.9874
published_at	2026-04-04T12:55:00Z

value	0.72026
scoring_system	epss
scoring_elements	0.98743
published_at	2026-04-09T12:55:00Z

value	0.72026
scoring_system	epss
scoring_elements	0.98744
published_at	2026-04-08T12:55:00Z

value	0.72026
scoring_system	epss
scoring_elements	0.98746
published_at	2026-04-12T12:55:00Z

value	0.72026
scoring_system	epss
scoring_elements	0.98748
published_at	2026-04-13T12:55:00Z

value	0.72026
scoring_system	epss
scoring_elements	0.9875
published_at	2026-04-16T12:55:00Z

value	0.72026
scoring_system	epss
scoring_elements	0.98751
published_at	2026-04-18T12:55:00Z

value	0.72026
scoring_system	epss
scoring_elements	0.98752
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-1419

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1419
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1419

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1187041
reference_id	1187041
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1187041

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776922
reference_id	776922
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776922

fixed_packages

url	pkg:deb/debian/vsftpd@3.0.2-18?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.2-18?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.2-18%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2015-1419

risk_score 0.3

exploitability 0.5

weighted_severity 0.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3yfh-6jac-7qfd

url VCID-brxk-7n3t-1kb4

vulnerability_id VCID-brxk-7n3t-1kb4

summary A Denial of Service vulnerability was found in vsftpd.

references

reference_url	ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-2.3.4/Changelog
reference_id
reference_type
scores
url	ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-2.3.4/Changelog

reference_url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622741
reference_id
reference_type
scores
url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622741

reference_url	http://cxib.net/stuff/vspoc232.c
reference_id
reference_type
scores
url	http://cxib.net/stuff/vspoc232.c

reference_url	http://jvn.jp/en/jp/JVN37417423/index.html
reference_id
reference_type
scores
url	http://jvn.jp/en/jp/JVN37417423/index.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055881.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055881.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055882.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055882.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055957.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055957.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html

reference_url	http://marc.info/?l=bugtraq&m=133226187115472&w=2
reference_id
reference_type
scores
url	http://marc.info/?l=bugtraq&m=133226187115472&w=2

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0762.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0762.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-0762

reference_id

reference_type

scores

value	0.45278
scoring_system	epss
scoring_elements	0.97613
published_at	2026-04-21T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.9758
published_at	2026-04-01T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.97586
published_at	2026-04-02T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.97589
published_at	2026-04-07T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.97595
published_at	2026-04-08T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.97598
published_at	2026-04-09T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.97601
published_at	2026-04-11T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.97602
published_at	2026-04-12T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.97603
published_at	2026-04-13T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.97611
published_at	2026-04-16T12:55:00Z

value	0.45278
scoring_system	epss
scoring_elements	0.97612
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-0762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0762

reference_url	http://securityreason.com/achievement_securityalert/95
reference_id
reference_type
scores
url	http://securityreason.com/achievement_securityalert/95

reference_url	http://securityreason.com/securityalert/8109
reference_id
reference_type
scores
url	http://securityreason.com/securityalert/8109

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/65873
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/65873

reference_url	http://www.debian.org/security/2011/dsa-2305
reference_id
reference_type
scores
url	http://www.debian.org/security/2011/dsa-2305

reference_url	http://www.exploit-db.com/exploits/16270
reference_id
reference_type
scores
url	http://www.exploit-db.com/exploits/16270

reference_url	http://www.kb.cert.org/vuls/id/590604
reference_id
reference_type
scores
url	http://www.kb.cert.org/vuls/id/590604

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:049
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:049

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0337.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0337.html

reference_url	http://www.securityfocus.com/archive/1/516748/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/516748/100/0/threaded

reference_url	http://www.securityfocus.com/bid/46617
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/46617

reference_url	http://www.securitytracker.com/id?1025186
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1025186

reference_url	http://www.ubuntu.com/usn/USN-1098-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-1098-1

reference_url	http://www.vupen.com/english/advisories/2011/0547
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0547

reference_url	http://www.vupen.com/english/advisories/2011/0639
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0639

reference_url	http://www.vupen.com/english/advisories/2011/0668
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0668

reference_url	http://www.vupen.com/english/advisories/2011/0713
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0713

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622741
reference_id	622741
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622741

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=681667
reference_id	681667
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=681667

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vsftpd_project:vsftpd::::::::
reference_id	cpe:2.3:a:vsftpd_project:vsftpd::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vsftpd_project:vsftpd::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:10.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04::::-:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:8.04::::-:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04::::-:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:6.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:13:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:14:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:15:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.2:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.3:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.4:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp3:::-:::*
reference_id	cpe:2.3:o:suse:linux_enterprise_server:10:sp3:::-:::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp3:::-:::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::-:::*
reference_id	cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::-:::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::-:::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:9:::::::*
reference_id	cpe:2.3:o:suse:linux_enterprise_server:9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:9:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-0762

reference_id

CVE-2011-0762

reference_type

scores

value	4.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:N/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2011-0762

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/16270.c
reference_id	CVE-2011-0762;OSVDB-73340
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/16270.c

reference_url	https://security.gentoo.org/glsa/201110-07
reference_id	GLSA-201110-07
reference_type
scores
url	https://security.gentoo.org/glsa/201110-07

reference_url	https://access.redhat.com/errata/RHSA-2011:0337
reference_id	RHSA-2011:0337
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0337

reference_url	https://usn.ubuntu.com/1098-1/
reference_id	USN-1098-1
reference_type
scores
url	https://usn.ubuntu.com/1098-1/

fixed_packages

url	pkg:deb/debian/vsftpd@2.3.4-1?distro=trixie
purl	pkg:deb/debian/vsftpd@2.3.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@2.3.4-1%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2011-0762

risk_score 7.2

exploitability 2.0

weighted_severity 3.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-brxk-7n3t-1kb4

url VCID-jhgz-qc5e-3ugy

vulnerability_id VCID-jhgz-qc5e-3ugy

summary vsftpd: backdoor which opens a shell on port 6200/tcp

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2523.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2523.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-2523

reference_id

reference_type

scores

value	0.94265
scoring_system	epss
scoring_elements	0.99935
published_at	2026-04-01T12:55:00Z

value	0.94265
scoring_system	epss
scoring_elements	0.99936
published_at	2026-04-21T12:55:00Z

value	0.94265
scoring_system	epss
scoring_elements	0.99937
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-2523

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1778781
reference_id	1778781
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1778781

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/49757.py
reference_id	CVE-2011-2523
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/49757.py

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/17491.rb
reference_id	OSVDB-73573;CVE-2011-2523
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/17491.rb

fixed_packages

url	pkg:deb/debian/vsftpd@0?distro=trixie
purl	pkg:deb/debian/vsftpd@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@0%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2011-2523

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jhgz-qc5e-3ugy

url VCID-jzjb-zrrm-bkdx

vulnerability_id VCID-jzjb-zrrm-bkdx

summary kernel: net_ns: oom killer fires because of slow net_ns cleanup

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2189.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2189.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-2189

reference_id

reference_type

scores

value	0.07624
scoring_system	epss
scoring_elements	0.9183
published_at	2026-04-01T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91838
published_at	2026-04-02T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91844
published_at	2026-04-04T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91853
published_at	2026-04-07T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91865
published_at	2026-04-08T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91871
published_at	2026-04-09T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91874
published_at	2026-04-11T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91875
published_at	2026-04-12T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.9187
published_at	2026-04-13T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91889
published_at	2026-04-16T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91886
published_at	2026-04-18T12:55:00Z

value	0.07624
scoring_system	epss
scoring_elements	0.91883
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-2189

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2189
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2189

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629373
reference_id	629373
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629373

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=711245
reference_id	711245
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=711245

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/36425.txt
reference_id	CVE-2011-2189;OSVDB-76805
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/36425.txt

reference_url	https://www.securityfocus.com/bid/50938/info
reference_id	CVE-2011-2189;OSVDB-76805
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/50938/info

reference_url	https://usn.ubuntu.com/1288-1/
reference_id	USN-1288-1
reference_type
scores
url	https://usn.ubuntu.com/1288-1/

fixed_packages

url	pkg:deb/debian/vsftpd@2.3.4-1?distro=trixie
purl	pkg:deb/debian/vsftpd@2.3.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@2.3.4-1%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2011-2189

risk_score 0.2

exploitability 2.0

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jzjb-zrrm-bkdx

url VCID-m7rd-uc2b-zqby

vulnerability_id VCID-m7rd-uc2b-zqby

summary vsftpd: vsftpd: Denial of service via integer overflow in ls command parameter parsing

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-14242.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-14242.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-14242

reference_id

reference_type

scores

value	0.00143
scoring_system	epss
scoring_elements	0.34669
published_at	2026-04-02T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.34614
published_at	2026-04-16T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.346
published_at	2026-04-18T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.34561
published_at	2026-04-21T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.34696
published_at	2026-04-04T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.34564
published_at	2026-04-07T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.34607
published_at	2026-04-08T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.34636
published_at	2026-04-09T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.34639
published_at	2026-04-11T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.34599
published_at	2026-04-12T12:55:00Z

value	0.00143
scoring_system	epss
scoring_elements	0.34575
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-14242

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=2419826

reference_id

2419826

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=2419826

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id	cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id	cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream
reference_id	cpe:/a:redhat:rhel_aus:8.2::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream
reference_id	cpe:/a:redhat:rhel_aus:8.4::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream
reference_id	cpe:/a:redhat:rhel_aus:8.6::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_id	cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_id	cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_id	cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_id	cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream
reference_id	cpe:/a:redhat:rhel_eus:9.4::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream
reference_id	cpe:/a:redhat:rhel_eus:9.6::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream
reference_id	cpe:/a:redhat:rhel_eus_long_life:8.4::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream
reference_id	cpe:/a:redhat:rhel_tus:8.6::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream
reference_id	cpe:/a:redhat:rhel_tus:8.8::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1
reference_id	cpe:/o:redhat:enterprise_linux:10.1
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id	cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id	cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0
reference_id	cpe:/o:redhat:enterprise_linux_eus:10.0
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0

reference_url

https://access.redhat.com/security/cve/CVE-2025-14242

reference_id

CVE-2025-14242

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/security/cve/CVE-2025-14242

reference_url

https://access.redhat.com/errata/RHSA-2026:0605

reference_id

RHSA-2026:0605

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:0605

reference_url

https://access.redhat.com/errata/RHSA-2026:0606

reference_id

RHSA-2026:0606

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:0606

reference_url

https://access.redhat.com/errata/RHSA-2026:0608

reference_id

RHSA-2026:0608

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:0608

reference_url

https://access.redhat.com/errata/RHSA-2026:4470

reference_id

RHSA-2026:4470

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:4470

reference_url

https://access.redhat.com/errata/RHSA-2026:4477

reference_id

RHSA-2026:4477

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:4477

reference_url

https://access.redhat.com/errata/RHSA-2026:4513

reference_id

RHSA-2026:4513

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:4513

reference_url

https://access.redhat.com/errata/RHSA-2026:4522

reference_id

RHSA-2026:4522

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:4522

reference_url

https://access.redhat.com/errata/RHSA-2026:4525

reference_id

RHSA-2026:4525

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:4525

reference_url

https://access.redhat.com/errata/RHSA-2026:4543

reference_id

RHSA-2026:4543

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:4543

reference_url

https://access.redhat.com/errata/RHSA-2026:4550

reference_id

RHSA-2026:4550

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:4550

reference_url

https://access.redhat.com/errata/RHSA-2026:4553

reference_id

RHSA-2026:4553

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:4553

reference_url

https://access.redhat.com/errata/RHSA-2026:4554

reference_id

RHSA-2026:4554

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-14T15:31:10Z/

url

https://access.redhat.com/errata/RHSA-2026:4554

fixed_packages

url	pkg:deb/debian/vsftpd@0?distro=trixie
purl	pkg:deb/debian/vsftpd@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@0%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2025-14242

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m7rd-uc2b-zqby

url VCID-nsa2-9v4m-1kdh

vulnerability_id VCID-nsa2-9v4m-1kdh

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-2259.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-2259.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2004-2259

reference_id

reference_type

scores

value	0.01911
scoring_system	epss
scoring_elements	0.83221
published_at	2026-04-01T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.83237
published_at	2026-04-02T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.83252
published_at	2026-04-04T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.83251
published_at	2026-04-07T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.83275
published_at	2026-04-08T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.83284
published_at	2026-04-09T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.833
published_at	2026-04-11T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.83294
published_at	2026-04-12T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.8329
published_at	2026-04-13T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.83325
published_at	2026-04-16T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.83326
published_at	2026-04-18T12:55:00Z

value	0.01911
scoring_system	epss
scoring_elements	0.83328
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2004-2259

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2259
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2259

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1617423
reference_id	1617423
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1617423

fixed_packages

url	pkg:deb/debian/vsftpd@2.0.1-1?distro=trixie
purl	pkg:deb/debian/vsftpd@2.0.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@2.0.1-1%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2004-2259

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nsa2-9v4m-1kdh

url VCID-nvkt-u1z5-s7gh

vulnerability_id VCID-nvkt-u1z5-s7gh

summary vsftpd: memory leak when deny_file option is set

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5962.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5962.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-5962

reference_id

reference_type

scores

value	0.1715
scoring_system	epss
scoring_elements	0.94973
published_at	2026-04-01T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.94982
published_at	2026-04-02T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.94984
published_at	2026-04-04T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.94987
published_at	2026-04-07T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.94995
published_at	2026-04-08T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.94999
published_at	2026-04-09T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.95004
published_at	2026-04-11T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.95006
published_at	2026-04-12T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.95008
published_at	2026-04-13T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.95017
published_at	2026-04-16T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.95021
published_at	2026-04-18T12:55:00Z

value	0.1715
scoring_system	epss
scoring_elements	0.95024
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-5962

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=397011
reference_id	397011
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=397011

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/5814.pl
reference_id	CVE-2007-5962
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/5814.pl

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/31818.sh
reference_id	CVE-2007-5962;OSVDB-45626
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/31818.sh

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/31819.pl
reference_id	CVE-2007-5962;OSVDB-45626
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/31819.pl

reference_url	https://www.securityfocus.com/bid/29322/info
reference_id	CVE-2007-5962;OSVDB-45626
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/29322/info

reference_url	https://access.redhat.com/errata/RHSA-2008:0295
reference_id	RHSA-2008:0295
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0295

fixed_packages

url	pkg:deb/debian/vsftpd@0?distro=trixie
purl	pkg:deb/debian/vsftpd@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@0%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2007-5962

risk_score 0.4

exploitability 2.0

weighted_severity 0.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nvkt-u1z5-s7gh

url VCID-rdwn-r68r-yucu

vulnerability_id VCID-rdwn-r68r-yucu

summary security flaw

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0135.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0135.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2003-0135

reference_id

reference_type

scores

value	0.00527
scoring_system	epss
scoring_elements	0.66988
published_at	2026-04-01T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67025
published_at	2026-04-02T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.6705
published_at	2026-04-04T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67024
published_at	2026-04-07T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67074
published_at	2026-04-08T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67086
published_at	2026-04-09T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67105
published_at	2026-04-11T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67092
published_at	2026-04-12T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67061
published_at	2026-04-13T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67094
published_at	2026-04-16T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67108
published_at	2026-04-18T12:55:00Z

value	0.00527
scoring_system	epss
scoring_elements	0.67088
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2003-0135

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1616979
reference_id	1616979
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1616979

reference_url	https://access.redhat.com/errata/RHSA-2003:084
reference_id	RHSA-2003:084
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2003:084

fixed_packages

url	pkg:deb/debian/vsftpd@0?distro=trixie
purl	pkg:deb/debian/vsftpd@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@0%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2003-0135

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rdwn-r68r-yucu

url VCID-refx-b13g-47am

vulnerability_id VCID-refx-b13g-47am

summary vsftpd 1.1.3 generates different error messages depending on whether or not a valid username exists, which allows remote attackers to identify valid usernames.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2004-0042

reference_id

reference_type

scores

value	0.00497
scoring_system	epss
scoring_elements	0.65754
published_at	2026-04-01T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65804
published_at	2026-04-02T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65833
published_at	2026-04-04T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65799
published_at	2026-04-07T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65851
published_at	2026-04-08T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65863
published_at	2026-04-09T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65881
published_at	2026-04-11T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65868
published_at	2026-04-12T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65838
published_at	2026-04-13T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65874
published_at	2026-04-16T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65889
published_at	2026-04-18T12:55:00Z

value	0.00497
scoring_system	epss
scoring_elements	0.65877
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2004-0042

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0042
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0042

fixed_packages

url	pkg:deb/debian/vsftpd@2.0.1-1?distro=trixie
purl	pkg:deb/debian/vsftpd@2.0.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@2.0.1-1%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2004-0042

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-refx-b13g-47am

url VCID-s3a9-vy5k-hbhj

vulnerability_id VCID-s3a9-vy5k-hbhj

summary older vsftpd authentication memory leak

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2375.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2375.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-2375

reference_id

reference_type

scores

value	0.04207
scoring_system	epss
scoring_elements	0.88751
published_at	2026-04-21T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.88686
published_at	2026-04-01T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.88695
published_at	2026-04-02T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.8871
published_at	2026-04-04T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.88712
published_at	2026-04-07T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.88729
published_at	2026-04-08T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.88735
published_at	2026-04-09T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.88747
published_at	2026-04-11T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.88742
published_at	2026-04-13T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.88755
published_at	2026-04-16T12:55:00Z

value	0.04207
scoring_system	epss
scoring_elements	0.88753
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-2375

reference_url	https://bugzilla.redhat.com/attachment.cgi?id=201051
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/attachment.cgi?id=201051

reference_url	http://secunia.com/advisories/31007
reference_id
reference_type
scores
url	http://secunia.com/advisories/31007

reference_url	http://secunia.com/advisories/31223
reference_id
reference_type
scores
url	http://secunia.com/advisories/31223

reference_url	http://secunia.com/advisories/32263
reference_id
reference_type
scores
url	http://secunia.com/advisories/32263

reference_url	https://issues.rpath.com/browse/RPL-2640
reference_id
reference_type
scores
url	https://issues.rpath.com/browse/RPL-2640

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10138
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10138

reference_url	http://support.avaya.com/elmodocs2/security/ASA-2008-398.htm
reference_id
reference_type
scores
url	http://support.avaya.com/elmodocs2/security/ASA-2008-398.htm

reference_url	http://wiki.rpath.com/Advisories:rPSA-2008-0217
reference_id
reference_type
scores
url	http://wiki.rpath.com/Advisories:rPSA-2008-0217

reference_url	http://www.openwall.com/lists/oss-security/2008/06/30/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2008/06/30/2

reference_url	http://www.redhat.com/support/errata/RHSA-2008-0579.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2008-0579.html

reference_url	http://www.redhat.com/support/errata/RHSA-2008-0680.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2008-0680.html

reference_url	http://www.securityfocus.com/archive/1/494081/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/494081/100/0/threaded

reference_url	http://www.securityfocus.com/bid/30364
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/30364

reference_url	http://www.securitytracker.com/id?1020546
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1020546

reference_url	http://www.vupen.com/english/advisories/2008/2820
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/2820

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=453376
reference_id	453376
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=453376

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.1:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.10:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.11:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.12:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.13:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.14:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.15:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.2:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.3:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.4:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.5:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.6:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.7:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.8:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.9:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.0.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.0.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.9.0:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.9.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.9.1:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.9.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.9.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.9.2:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.9.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.9.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.9.3:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:0.9.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:0.9.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.1.0:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:1.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.1.1:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:1.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.1.2:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:1.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.1.3:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:1.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.2.0:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:1.2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.2.1:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:1.2.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.2.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.2.2:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:1.2.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:1.2.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.0:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:2.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.1:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:2.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.2:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:2.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.3:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:2.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.4:::::::*
reference_id	cpe:2.3:a:redhat:vsftpd:2.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:vsftpd:2.0.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:3.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:4.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:4.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-2375

reference_id

CVE-2008-2375

reference_type

scores

value	7.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2008-2375

reference_url	https://access.redhat.com/errata/RHSA-2008:0579
reference_id	RHSA-2008:0579
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0579

reference_url	https://access.redhat.com/errata/RHSA-2008:0680
reference_id	RHSA-2008:0680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0680

fixed_packages

url	pkg:deb/debian/vsftpd@0?distro=trixie
purl	pkg:deb/debian/vsftpd@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@0%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-12%3Fdistro=trixie

url pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

purl pkg:deb/debian/vsftpd@3.0.3-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.3-13%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2008-2375

risk_score 3.2

exploitability 0.5

weighted_severity 6.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s3a9-vy5k-hbhj

url VCID-u8aq-2qhu-gff5

vulnerability_id VCID-u8aq-2qhu-gff5

summary ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3618.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3618.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3618

reference_id

reference_type

scores

value	0.00615
scoring_system	epss
scoring_elements	0.69833
published_at	2026-04-01T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.69928
published_at	2026-04-21T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.6991
published_at	2026-04-12T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.69896
published_at	2026-04-13T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.69937
published_at	2026-04-16T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.69946
published_at	2026-04-18T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.69845
published_at	2026-04-02T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.6986
published_at	2026-04-04T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.69837
published_at	2026-04-07T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.69886
published_at	2026-04-08T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.69902
published_at	2026-04-09T12:55:00Z

value	0.00615
scoring_system	epss
scoring_elements	0.69925
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3618

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1975623
reference_id	1975623
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1975623

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328
reference_id	991328
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329
reference_id	991329
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331
reference_id	991331
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331

reference_url

https://security.archlinux.org/AVG-2101

reference_id

AVG-2101

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2101

reference_url

https://security.archlinux.org/AVG-2102

reference_id

AVG-2102

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2102

reference_url

https://security.archlinux.org/AVG-2103

reference_id

AVG-2103

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2103

reference_url	https://usn.ubuntu.com/5371-1/
reference_id	USN-5371-1
reference_type
scores
url	https://usn.ubuntu.com/5371-1/

reference_url	https://usn.ubuntu.com/5371-2/
reference_id	USN-5371-2
reference_type
scores
url	https://usn.ubuntu.com/5371-2/

reference_url	https://usn.ubuntu.com/6379-1/
reference_id	USN-6379-1
reference_type
scores
url	https://usn.ubuntu.com/6379-1/

fixed_packages

url	pkg:deb/debian/vsftpd@3.0.5-0.1?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.1%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.2%3Fdistro=trixie

url	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
purl	pkg:deb/debian/vsftpd@3.0.5-0.5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

aliases CVE-2021-3618

risk_score 3.4

exploitability 0.5

weighted_severity 6.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u8aq-2qhu-gff5

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/vsftpd@3.0.5-0.5%3Fdistro=trixie

Package Instance