Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/haproxy@2.4.17-6.el9_2?arch=2
Typerpm
Namespaceredhat
Namehaproxy
Version2.4.17-6.el9_2
Qualifiers
arch 2
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-s86j-egny-77cu
vulnerability_id VCID-s86j-egny-77cu
summary haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-45539.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-45539.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-45539
reference_id
reference_type
scores
0
value 0.00027
scoring_system epss
scoring_elements 0.07664
published_at 2026-04-02T12:55:00Z
1
value 0.00027
scoring_system epss
scoring_elements 0.07745
published_at 2026-04-21T12:55:00Z
2
value 0.00027
scoring_system epss
scoring_elements 0.07707
published_at 2026-04-04T12:55:00Z
3
value 0.00027
scoring_system epss
scoring_elements 0.0767
published_at 2026-04-07T12:55:00Z
4
value 0.00027
scoring_system epss
scoring_elements 0.0773
published_at 2026-04-08T12:55:00Z
5
value 0.00027
scoring_system epss
scoring_elements 0.07748
published_at 2026-04-09T12:55:00Z
6
value 0.00027
scoring_system epss
scoring_elements 0.07747
published_at 2026-04-11T12:55:00Z
7
value 0.00027
scoring_system epss
scoring_elements 0.07733
published_at 2026-04-12T12:55:00Z
8
value 0.00027
scoring_system epss
scoring_elements 0.07717
published_at 2026-04-13T12:55:00Z
9
value 0.00027
scoring_system epss
scoring_elements 0.07641
published_at 2026-04-16T12:55:00Z
10
value 0.00027
scoring_system epss
scoring_elements 0.07628
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-45539
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40225
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40225
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45539
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45539
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://lists.w3.org/Archives/Public/ietf-http-wg/2023JulSep/0070.html
reference_id 0070.html
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:28:42Z/
url https://lists.w3.org/Archives/Public/ietf-http-wg/2023JulSep/0070.html
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2253037
reference_id 2253037
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2253037
7
reference_url https://lists.debian.org/debian-lts-announce/2023/12/msg00010.html
reference_id msg00010.html
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:28:42Z/
url https://lists.debian.org/debian-lts-announce/2023/12/msg00010.html
8
reference_url https://www.mail-archive.com/haproxy%40formilux.org/msg43861.html
reference_id msg43861.html
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:28:42Z/
url https://www.mail-archive.com/haproxy%40formilux.org/msg43861.html
9
reference_url https://git.haproxy.org/?p=haproxy.git%3Ba=commit%3Bh=2eab6d354322932cfec2ed54de261e4347eca9a6
reference_id ?p=haproxy.git%3Ba=commit%3Bh=2eab6d354322932cfec2ed54de261e4347eca9a6
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:28:42Z/
url https://git.haproxy.org/?p=haproxy.git%3Ba=commit%3Bh=2eab6d354322932cfec2ed54de261e4347eca9a6
10
reference_url https://access.redhat.com/errata/RHSA-2024:10267
reference_id RHSA-2024:10267
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:10267
11
reference_url https://access.redhat.com/errata/RHSA-2024:10271
reference_id RHSA-2024:10271
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:10271
12
reference_url https://access.redhat.com/errata/RHSA-2024:1089
reference_id RHSA-2024:1089
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1089
13
reference_url https://access.redhat.com/errata/RHSA-2024:1142
reference_id RHSA-2024:1142
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1142
14
reference_url https://access.redhat.com/errata/RHSA-2024:4853
reference_id RHSA-2024:4853
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:4853
15
reference_url https://access.redhat.com/errata/RHSA-2024:6412
reference_id RHSA-2024:6412
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:6412
16
reference_url https://access.redhat.com/errata/RHSA-2024:8849
reference_id RHSA-2024:8849
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:8849
17
reference_url https://access.redhat.com/errata/RHSA-2024:8874
reference_id RHSA-2024:8874
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:8874
18
reference_url https://access.redhat.com/errata/RHSA-2024:9945
reference_id RHSA-2024:9945
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:9945
19
reference_url https://usn.ubuntu.com/6530-1/
reference_id USN-6530-1
reference_type
scores
url https://usn.ubuntu.com/6530-1/
20
reference_url https://usn.ubuntu.com/6530-2/
reference_id USN-6530-2
reference_type
scores
url https://usn.ubuntu.com/6530-2/
fixed_packages
aliases CVE-2023-45539
risk_score 3.7
exploitability 0.5
weighted_severity 7.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s86j-egny-77cu
1
url VCID-ygb3-7kb1-tqbc
vulnerability_id VCID-ygb3-7kb1-tqbc
summary haproxy: Proxy forwards malformed empty Content-Length headers
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40225.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40225.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-40225
reference_id
reference_type
scores
0
value 0.00026
scoring_system epss
scoring_elements 0.07053
published_at 2026-04-02T12:55:00Z
1
value 0.00028
scoring_system epss
scoring_elements 0.08102
published_at 2026-04-21T12:55:00Z
2
value 0.00028
scoring_system epss
scoring_elements 0.08077
published_at 2026-04-08T12:55:00Z
3
value 0.00028
scoring_system epss
scoring_elements 0.08101
published_at 2026-04-09T12:55:00Z
4
value 0.00028
scoring_system epss
scoring_elements 0.08091
published_at 2026-04-11T12:55:00Z
5
value 0.00028
scoring_system epss
scoring_elements 0.0807
published_at 2026-04-12T12:55:00Z
6
value 0.00028
scoring_system epss
scoring_elements 0.08054
published_at 2026-04-13T12:55:00Z
7
value 0.00028
scoring_system epss
scoring_elements 0.07959
published_at 2026-04-16T12:55:00Z
8
value 0.00028
scoring_system epss
scoring_elements 0.07943
published_at 2026-04-18T12:55:00Z
9
value 0.00028
scoring_system epss
scoring_elements 0.08057
published_at 2026-04-04T12:55:00Z
10
value 0.00028
scoring_system epss
scoring_elements 0.08017
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-40225
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40225
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40225
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45539
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45539
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043502
reference_id 1043502
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043502
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2231370
reference_id 2231370
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2231370
7
reference_url https://github.com/haproxy/haproxy/issues/2237
reference_id 2237
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T20:14:21Z/
url https://github.com/haproxy/haproxy/issues/2237
8
reference_url https://cwe.mitre.org/data/definitions/436.html
reference_id 436.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T20:14:21Z/
url https://cwe.mitre.org/data/definitions/436.html
9
reference_url https://github.com/haproxy/haproxy/commit/6492f1f29d738457ea9f382aca54537f35f9d856
reference_id 6492f1f29d738457ea9f382aca54537f35f9d856
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T20:14:21Z/
url https://github.com/haproxy/haproxy/commit/6492f1f29d738457ea9f382aca54537f35f9d856
10
reference_url https://www.haproxy.org/download/2.6/src/CHANGELOG
reference_id CHANGELOG
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T20:14:21Z/
url https://www.haproxy.org/download/2.6/src/CHANGELOG
11
reference_url https://www.haproxy.org/download/2.7/src/CHANGELOG
reference_id CHANGELOG
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T20:14:21Z/
url https://www.haproxy.org/download/2.7/src/CHANGELOG
12
reference_url https://www.haproxy.org/download/2.8/src/CHANGELOG
reference_id CHANGELOG
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T20:14:21Z/
url https://www.haproxy.org/download/2.8/src/CHANGELOG
13
reference_url https://access.redhat.com/errata/RHSA-2023:7473
reference_id RHSA-2023:7473
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7473
14
reference_url https://access.redhat.com/errata/RHSA-2023:7606
reference_id RHSA-2023:7606
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7606
15
reference_url https://access.redhat.com/errata/RHSA-2024:0200
reference_id RHSA-2024:0200
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0200
16
reference_url https://access.redhat.com/errata/RHSA-2024:0308
reference_id RHSA-2024:0308
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0308
17
reference_url https://access.redhat.com/errata/RHSA-2024:1089
reference_id RHSA-2024:1089
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1089
18
reference_url https://access.redhat.com/errata/RHSA-2024:1142
reference_id RHSA-2024:1142
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1142
19
reference_url https://usn.ubuntu.com/6294-1/
reference_id USN-6294-1
reference_type
scores
url https://usn.ubuntu.com/6294-1/
20
reference_url https://usn.ubuntu.com/6294-2/
reference_id USN-6294-2
reference_type
scores
url https://usn.ubuntu.com/6294-2/
fixed_packages
aliases CVE-2023-40225
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ygb3-7kb1-tqbc
Fixing_vulnerabilities
Risk_score3.7
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/haproxy@2.4.17-6.el9_2%3Farch=2