Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/octavia@7.1.0-2?distro=trixie
Typedeb
Namespacedebian
Nameoctavia
Version7.1.0-2
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version11.0.0-2
Latest_non_vulnerable_version18.0.0-2
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-9e1z-ubw1-qbcf
vulnerability_id VCID-9e1z-ubw1-qbcf
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17134.json
reference_id
reference_type
scores
0
value 6.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17134.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17134
reference_id
reference_type
scores
0
value 0.0039
scoring_system epss
scoring_elements 0.60577
published_at 2026-06-12T12:55:00Z
1
value 0.0039
scoring_system epss
scoring_elements 0.60471
published_at 2026-06-11T12:55:00Z
2
value 0.0039
scoring_system epss
scoring_elements 0.6058
published_at 2026-06-14T12:55:00Z
3
value 0.0039
scoring_system epss
scoring_elements 0.60588
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17134
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17134
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17134
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/openstack/octavia
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia
5
reference_url https://github.com/openstack/octavia/commit/1725517d1d209f26b2275306d83e49c099dcbe1a
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/commit/1725517d1d209f26b2275306d83e49c099dcbe1a
6
reference_url https://github.com/openstack/octavia/commit/2976a7f0f109e17930db8a61136526ead44ea7e5
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/commit/2976a7f0f109e17930db8a61136526ead44ea7e5
7
reference_url https://github.com/openstack/octavia/commit/624ff08f27bcb73788663cbe6d35cbe29c537844
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/commit/624ff08f27bcb73788663cbe6d35cbe29c537844
8
reference_url https://github.com/openstack/octavia/commit/89a2f6e0136ad49d928eb65b4cf555af2a2b8ab1
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/commit/89a2f6e0136ad49d928eb65b4cf555af2a2b8ab1
9
reference_url https://github.com/openstack/octavia/commit/b0c2cd7b4c835c391cfedf12cf9f9ff8a0aabd17
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/commit/b0c2cd7b4c835c391cfedf12cf9f9ff8a0aabd17
10
reference_url https://github.com/openstack/octavia/commit/c2fdffc3b748f8007c72e52df257e38756923b40
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/commit/c2fdffc3b748f8007c72e52df257e38756923b40
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-17134
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-17134
12
reference_url https://review.opendev.org/686541
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/686541
13
reference_url https://review.opendev.org/686543
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/686543
14
reference_url https://review.opendev.org/686544
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/686544
15
reference_url https://review.opendev.org/686545
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/686545
16
reference_url https://review.opendev.org/686546
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/686546
17
reference_url https://review.opendev.org/686547
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/686547
18
reference_url https://security.openstack.org/ossa/OSSA-2019-005.html
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://security.openstack.org/ossa/OSSA-2019-005.html
19
reference_url https://storyboard.openstack.org/#!/story/2006660
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://storyboard.openstack.org/#!/story/2006660
20
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1761307
reference_id 1761307
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1761307
21
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941897
reference_id 941897
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941897
22
reference_url https://github.com/advisories/GHSA-r4v4-3jj7-jc29
reference_id GHSA-r4v4-3jj7-jc29
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-r4v4-3jj7-jc29
23
reference_url https://access.redhat.com/errata/RHSA-2019:3743
reference_id RHSA-2019:3743
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3743
24
reference_url https://access.redhat.com/errata/RHSA-2019:3788
reference_id RHSA-2019:3788
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3788
25
reference_url https://access.redhat.com/errata/RHSA-2020:0721
reference_id RHSA-2020:0721
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0721
26
reference_url https://usn.ubuntu.com/4153-1/
reference_id USN-4153-1
reference_type
scores
url https://usn.ubuntu.com/4153-1/
fixed_packages
0
url pkg:deb/debian/octavia@4.0.0-6?distro=trixie
purl pkg:deb/debian/octavia@4.0.0-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@4.0.0-6%3Fdistro=trixie
1
url pkg:deb/debian/octavia@7.1.0-2?distro=trixie
purl pkg:deb/debian/octavia@7.1.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@7.1.0-2%3Fdistro=trixie
2
url pkg:deb/debian/octavia@11.0.0-2?distro=trixie
purl pkg:deb/debian/octavia@11.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@11.0.0-2%3Fdistro=trixie
3
url pkg:deb/debian/octavia@16.0.0-2?distro=trixie
purl pkg:deb/debian/octavia@16.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@16.0.0-2%3Fdistro=trixie
4
url pkg:deb/debian/octavia@18.0.0-2?distro=trixie
purl pkg:deb/debian/octavia@18.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@18.0.0-2%3Fdistro=trixie
aliases CVE-2019-17134, GHSA-r4v4-3jj7-jc29
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9e1z-ubw1-qbcf
1
url VCID-gfc8-ss31-17f6
vulnerability_id VCID-gfc8-ss31-17f6
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16856.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16856.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-16856
reference_id
reference_type
scores
0
value 0.00267
scoring_system epss
scoring_elements 0.50593
published_at 2026-06-14T12:55:00Z
1
value 0.00267
scoring_system epss
scoring_elements 0.50456
published_at 2026-06-11T12:55:00Z
2
value 0.00267
scoring_system epss
scoring_elements 0.50607
published_at 2026-06-13T12:55:00Z
3
value 0.00267
scoring_system epss
scoring_elements 0.5059
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-16856
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16856
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16856
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/openstack/octavia
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia
5
reference_url https://github.com/openstack/octavia/commit/ae7c87f54a6c5483a608d5e9fe51ea1966ea1f7e
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/commit/ae7c87f54a6c5483a608d5e9fe51ea1966ea1f7e
6
reference_url https://github.com/openstack/octavia/commits/3.1.0
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/commits/3.1.0
7
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/octavia/PYSEC-2019-193.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/octavia/PYSEC-2019-193.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1649165
reference_id 1649165
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1649165
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-16856
reference_id CVE-2018-16856
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-16856
10
reference_url https://github.com/advisories/GHSA-qcj3-h27m-mp9x
reference_id GHSA-qcj3-h27m-mp9x
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qcj3-h27m-mp9x
11
reference_url https://access.redhat.com/errata/RHSA-2019:0567
reference_id RHSA-2019:0567
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:0567
12
reference_url https://access.redhat.com/errata/RHSA-2019:0593
reference_id RHSA-2019:0593
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:0593
fixed_packages
0
url pkg:deb/debian/octavia@0?distro=trixie
purl pkg:deb/debian/octavia@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@0%3Fdistro=trixie
1
url pkg:deb/debian/octavia@7.1.0-2?distro=trixie
purl pkg:deb/debian/octavia@7.1.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@7.1.0-2%3Fdistro=trixie
2
url pkg:deb/debian/octavia@11.0.0-2?distro=trixie
purl pkg:deb/debian/octavia@11.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@11.0.0-2%3Fdistro=trixie
3
url pkg:deb/debian/octavia@16.0.0-2?distro=trixie
purl pkg:deb/debian/octavia@16.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@16.0.0-2%3Fdistro=trixie
4
url pkg:deb/debian/octavia@18.0.0-2?distro=trixie
purl pkg:deb/debian/octavia@18.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@18.0.0-2%3Fdistro=trixie
aliases CVE-2018-16856, GHSA-qcj3-h27m-mp9x, PYSEC-2019-193
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gfc8-ss31-17f6
2
url VCID-wknc-er6b-fbd5
vulnerability_id VCID-wknc-er6b-fbd5
summary An access-control flaw was found in the Octavia service when the cloud platform was deployed using Red Hat OpenStack Platform Director. An attacker could cause new amphorae to run based on any arbitrary image. This meant that a remote attacker could upload a new amphorae image and, if requested to spawn new amphorae, Octavia would then pick up the compromised image.
references
0
reference_url https://access.redhat.com/errata/RHSA-2019:1683
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:1683
1
reference_url https://access.redhat.com/errata/RHSA-2019:1742
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:1742
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3895.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3895.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-3895
reference_id
reference_type
scores
0
value 0.00509
scoring_system epss
scoring_elements 0.66802
published_at 2026-06-11T12:55:00Z
1
value 0.00509
scoring_system epss
scoring_elements 0.66895
published_at 2026-06-12T12:55:00Z
2
value 0.00509
scoring_system epss
scoring_elements 0.6691
published_at 2026-06-14T12:55:00Z
3
value 0.00509
scoring_system epss
scoring_elements 0.66909
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-3895
4
reference_url https://bugs.launchpad.net/octavia/+bug/1620629
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugs.launchpad.net/octavia/+bug/1620629
5
reference_url https://bugs.launchpad.net/tripleo/+bug/1830607
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugs.launchpad.net/tripleo/+bug/1830607
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3895
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3895
7
reference_url https://github.com/advisories/GHSA-jjgh-m322-fjx6
reference_id
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-jjgh-m322-fjx6
8
reference_url https://github.com/openstack/octavia
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia
9
reference_url https://github.com/openstack/octavia/blob/08570831754d9671fbd1756d668f55f191e47ca4/octavia/compute/drivers/nova_driver.py#L35
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/blob/08570831754d9671fbd1756d668f55f191e47ca4/octavia/compute/drivers/nova_driver.py#L35
10
reference_url https://github.com/openstack/octavia/commit/d7d062a47ab54a540d81f13a0e5f3085ebfaa0d2
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/octavia/commit/d7d062a47ab54a540d81f13a0e5f3085ebfaa0d2
11
reference_url https://github.com/openstack/tripleo-common/commit/e7c5eab712e0f70ecbc6d225d4766e0fe0f3f884
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/tripleo-common/commit/e7c5eab712e0f70ecbc6d225d4766e0fe0f3f884
12
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/octavia/PYSEC-2019-194.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/octavia/PYSEC-2019-194.yaml
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-3895
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-3895
14
reference_url https://opendev.org/openstack/octavia/commit/d7d062a47ab54a540d81f13a0e5f3085ebfaa0d2
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://opendev.org/openstack/octavia/commit/d7d062a47ab54a540d81f13a0e5f3085ebfaa0d2
15
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1694608
reference_id 1694608
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1694608
fixed_packages
0
url pkg:deb/debian/octavia@0?distro=trixie
purl pkg:deb/debian/octavia@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@0%3Fdistro=trixie
1
url pkg:deb/debian/octavia@7.1.0-2?distro=trixie
purl pkg:deb/debian/octavia@7.1.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@7.1.0-2%3Fdistro=trixie
2
url pkg:deb/debian/octavia@11.0.0-2?distro=trixie
purl pkg:deb/debian/octavia@11.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@11.0.0-2%3Fdistro=trixie
3
url pkg:deb/debian/octavia@16.0.0-2?distro=trixie
purl pkg:deb/debian/octavia@16.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@16.0.0-2%3Fdistro=trixie
4
url pkg:deb/debian/octavia@18.0.0-2?distro=trixie
purl pkg:deb/debian/octavia@18.0.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@18.0.0-2%3Fdistro=trixie
aliases CVE-2019-3895, GHSA-jjgh-m322-fjx6, PYSEC-2019-194
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wknc-er6b-fbd5
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/octavia@7.1.0-2%3Fdistro=trixie