Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1

Type deb

Namespace debian

Name qemu

Version 1:10.2.1+ds-1

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1:11.0.0+ds-1

Latest_non_vulnerable_version 1:11.0.0+ds-1

Affected_by_vulnerabilities

url VCID-9szt-c829-zfdh

vulnerability_id VCID-9szt-c829-zfdh

summary qemu-kvm: virtio-snd: integer overflow leading to unbounded memory allocation

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3196.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3196.json

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1129605
reference_id	1129605
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1129605

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2443789
reference_id	2443789
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2443789

reference_url	https://usn.ubuntu.com/8161-1/
reference_id	USN-8161-1
reference_type
scores
url	https://usn.ubuntu.com/8161-1/

fixed_packages

url pkg:deb/debian/qemu@1:10.2.2%2Bds-1

purl pkg:deb/debian/qemu@1:10.2.2%2Bds-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j9f-u62h-rug2

vulnerability	VCID-46gg-8h8g-2kf5

vulnerability	VCID-4mt9-kf9m-2fbz

vulnerability	VCID-n9n4-prkb-f3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1

aliases CVE-2026-3196

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9szt-c829-zfdh

url VCID-vcun-y6d5-6uby

vulnerability_id VCID-vcun-y6d5-6uby

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3842.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3842.json

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2458150
reference_id	2458150
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2458150

reference_url	https://usn.ubuntu.com/8161-1/
reference_id	USN-8161-1
reference_type
scores
url	https://usn.ubuntu.com/8161-1/

fixed_packages

url pkg:deb/debian/qemu@1:10.2.2%2Bds-1

purl pkg:deb/debian/qemu@1:10.2.2%2Bds-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j9f-u62h-rug2

vulnerability	VCID-46gg-8h8g-2kf5

vulnerability	VCID-4mt9-kf9m-2fbz

vulnerability	VCID-n9n4-prkb-f3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1

aliases CVE-2026-3842

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vcun-y6d5-6uby

Fixing_vulnerabilities

Risk_score 3.5

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1

Package Instance