Django REST framework
Api Root
Vulnerability List
Vulnerability Instance
Format
json
api
admin
Vulnerability Instance
Lookup for vulnerabilities affecting packages.
Vulnerability_id
VCID-5j8b-9c5q-syg6
Summary
Aliases
0
alias
CVE-2026-42151
1
alias
GHSA-wg65-39gg-5wfj
Fixed_packages
0
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=s390x&distroversion=v3.23&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=s390x&distroversion=v3.23&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=s390x&distroversion=v3.23&reponame=community
1
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=x86&distroversion=v3.23&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=x86&distroversion=v3.23&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=x86&distroversion=v3.23&reponame=community
2
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=x86_64&distroversion=v3.23&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=x86_64&distroversion=v3.23&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=x86_64&distroversion=v3.23&reponame=community
3
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=s390x&distroversion=edge&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=s390x&distroversion=edge&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=s390x&distroversion=edge&reponame=community
4
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=loongarch64&distroversion=v3.23&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=loongarch64&distroversion=v3.23&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=loongarch64&distroversion=v3.23&reponame=community
5
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=riscv64&distroversion=v3.23&reponame=community
6
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=loongarch64&distroversion=edge&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=loongarch64&distroversion=edge&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=loongarch64&distroversion=edge&reponame=community
7
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=ppc64le&distroversion=edge&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=ppc64le&distroversion=edge&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=ppc64le&distroversion=edge&reponame=community
8
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=riscv64&distroversion=edge&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=riscv64&distroversion=edge&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=riscv64&distroversion=edge&reponame=community
9
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=aarch64&distroversion=v3.23&reponame=community
10
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=armhf&distroversion=v3.23&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=armhf&distroversion=v3.23&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=armhf&distroversion=v3.23&reponame=community
11
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=armv7&distroversion=v3.23&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=armv7&distroversion=v3.23&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=armv7&distroversion=v3.23&reponame=community
12
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=ppc64le&distroversion=v3.23&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=ppc64le&distroversion=v3.23&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=ppc64le&distroversion=v3.23&reponame=community
13
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=aarch64&distroversion=edge&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=aarch64&distroversion=edge&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=aarch64&distroversion=edge&reponame=community
14
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=armhf&distroversion=edge&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=armhf&distroversion=edge&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=armhf&distroversion=edge&reponame=community
15
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=armv7&distroversion=edge&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=armv7&distroversion=edge&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=armv7&distroversion=edge&reponame=community
16
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=x86&distroversion=edge&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=x86&distroversion=edge&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=x86&distroversion=edge&reponame=community
17
url
pkg:apk/alpine/prometheus@3.5.3-r0?arch=x86_64&distroversion=edge&reponame=community
purl
pkg:apk/alpine/prometheus@3.5.3-r0?arch=x86_64&distroversion=edge&reponame=community
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:apk/alpine/prometheus@3.5.3-r0%3Farch=x86_64&distroversion=edge&reponame=community
18
url
pkg:golang/github.com/prometheus/prometheus@0.311.3
purl
pkg:golang/github.com/prometheus/prometheus@0.311.3
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:golang/github.com/prometheus/prometheus@0.311.3
Affected_packages
References
0
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2026-42151
reference_id
reference_type
scores
0
value
0.0001
scoring_system
epss
scoring_elements
0.0125
published_at
2026-05-07T12:55:00Z
1
value
0.0001
scoring_system
epss
scoring_elements
0.01256
published_at
2026-05-05T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2026-42151
1
reference_url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42151
reference_id
reference_type
scores
url
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42151
2
reference_url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value
7.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url
https://github.com/prometheus/prometheus
reference_id
reference_type
scores
0
value
7.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value
HIGH
scoring_system
generic_textual
scoring_elements
url
https://github.com/prometheus/prometheus
4
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2026-42151
reference_id
reference_type
scores
0
value
7.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value
HIGH
scoring_system
generic_textual
scoring_elements
url
https://nvd.nist.gov/vuln/detail/CVE-2026-42151
5
reference_url
https://github.com/prometheus/prometheus/pull/18587
reference_id
18587
reference_type
scores
0
value
7.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value
HIGH
scoring_system
generic_textual
scoring_elements
2
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-04T19:54:39Z/
url
https://github.com/prometheus/prometheus/pull/18587
6
reference_url
https://github.com/prometheus/prometheus/pull/18590
reference_id
18590
reference_type
scores
0
value
7.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value
HIGH
scoring_system
generic_textual
scoring_elements
2
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-04T19:54:39Z/
url
https://github.com/prometheus/prometheus/pull/18590
7
reference_url
https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj
reference_id
GHSA-wg65-39gg-5wfj
reference_type
scores
0
value
7.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value
HIGH
scoring_system
generic_textual
scoring_elements
2
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-04T19:54:39Z/
url
https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj
8
reference_url
https://github.com/prometheus/prometheus/releases/tag/v3.11.3
reference_id
v3.11.3
reference_type
scores
0
value
7.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value
HIGH
scoring_system
generic_textual
scoring_elements
2
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-04T19:54:39Z/
url
https://github.com/prometheus/prometheus/releases/tag/v3.11.3
9
reference_url
https://github.com/prometheus/prometheus/releases/tag/v3.5.3
reference_id
v3.5.3
reference_type
scores
0
value
7.5
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value
HIGH
scoring_system
generic_textual
scoring_elements
2
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-04T19:54:39Z/
url
https://github.com/prometheus/prometheus/releases/tag/v3.5.3
Weaknesses
0
cwe_id
200
name
Exposure of Sensitive Information to an Unauthorized Actor
description
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
1
cwe_id
312
name
Cleartext Storage of Sensitive Information
description
The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.
Exploits
Severity_range_score
7.0 - 8.9
Exploitability
null
Weighted_severity
null
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-5j8b-9c5q-syg6
×
Create
None
×
Edit
None