Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-asx6-ds7x-6ubz
Summarygolang.org/x/net/html: Infinite parsing loop in golang.org/x/net
Aliases
0
alias CVE-2025-58190
Fixed_packages
0
url pkg:deb/debian/golang-golang-x-net@1:0.0%2Bgit20211209.491a49a%2Bdfsg-1
purl pkg:deb/debian/golang-golang-x-net@1:0.0%2Bgit20211209.491a49a%2Bdfsg-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.0%252Bgit20211209.491a49a%252Bdfsg-1
1
url pkg:deb/debian/golang-golang-x-net@1:0.24.0%2Bdfsg-1
purl pkg:deb/debian/golang-golang-x-net@1:0.24.0%2Bdfsg-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.24.0%252Bdfsg-1
2
url pkg:deb/debian/golang-golang-x-net@1:0.47.0-1
purl pkg:deb/debian/golang-golang-x-net@1:0.47.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.47.0-1
3
url pkg:deb/debian/golang-golang-x-net@1:0.47.0-1?distro=trixie
purl pkg:deb/debian/golang-golang-x-net@1:0.47.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.47.0-1%3Fdistro=trixie
4
url pkg:deb/debian/golang-golang-x-net@1:0.47.0-2?distro=trixie
purl pkg:deb/debian/golang-golang-x-net@1:0.47.0-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.47.0-2%3Fdistro=trixie
5
url pkg:deb/debian/golang-golang-x-net@1:0.53.0-1?distro=trixie
purl pkg:deb/debian/golang-golang-x-net@1:0.53.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.53.0-1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/golang-golang-x-net@1:0.0%2Bgit20210119.5f4716e%2Bdfsg-4
purl pkg:deb/debian/golang-golang-x-net@1:0.0%2Bgit20210119.5f4716e%2Bdfsg-4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3zyn-rapk-ybe8
1
vulnerability VCID-5kkq-5jpf-fqev
2
vulnerability VCID-73s2-6cpr-gkdu
3
vulnerability VCID-aj2b-56uj-gkar
4
vulnerability VCID-asx6-ds7x-6ubz
5
vulnerability VCID-azr4-u36f-pbew
6
vulnerability VCID-g8qg-4g78-pfgn
7
vulnerability VCID-k6de-54xk-dkfv
8
vulnerability VCID-sdd3-35ng-g7a3
9
vulnerability VCID-w53f-uad6-gqdn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.0%252Bgit20210119.5f4716e%252Bdfsg-4
1
url pkg:deb/debian/golang-golang-x-net@1:0.0%2Bgit20210119.5f4716e%2Bdfsg-4?distro=trixie
purl pkg:deb/debian/golang-golang-x-net@1:0.0%2Bgit20210119.5f4716e%2Bdfsg-4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3zyn-rapk-ybe8
1
vulnerability VCID-5kkq-5jpf-fqev
2
vulnerability VCID-73s2-6cpr-gkdu
3
vulnerability VCID-aj2b-56uj-gkar
4
vulnerability VCID-asx6-ds7x-6ubz
5
vulnerability VCID-azr4-u36f-pbew
6
vulnerability VCID-g8qg-4g78-pfgn
7
vulnerability VCID-k6de-54xk-dkfv
8
vulnerability VCID-sdd3-35ng-g7a3
9
vulnerability VCID-w53f-uad6-gqdn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.0%252Bgit20210119.5f4716e%252Bdfsg-4%3Fdistro=trixie
2
url pkg:deb/debian/golang-golang-x-net@1:0.7.0%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/golang-golang-x-net@1:0.7.0%2Bdfsg-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3zyn-rapk-ybe8
1
vulnerability VCID-73s2-6cpr-gkdu
2
vulnerability VCID-aj2b-56uj-gkar
3
vulnerability VCID-asx6-ds7x-6ubz
4
vulnerability VCID-g8qg-4g78-pfgn
5
vulnerability VCID-k6de-54xk-dkfv
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.7.0%252Bdfsg-1%3Fdistro=trixie
3
url pkg:deb/debian/golang-golang-x-net@1:0.7.0%2Bdfsg-1
purl pkg:deb/debian/golang-golang-x-net@1:0.7.0%2Bdfsg-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3zyn-rapk-ybe8
1
vulnerability VCID-73s2-6cpr-gkdu
2
vulnerability VCID-aj2b-56uj-gkar
3
vulnerability VCID-asx6-ds7x-6ubz
4
vulnerability VCID-g8qg-4g78-pfgn
5
vulnerability VCID-k6de-54xk-dkfv
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.7.0%252Bdfsg-1
4
url pkg:deb/debian/golang-golang-x-net@1:0.27.0-2
purl pkg:deb/debian/golang-golang-x-net@1:0.27.0-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-73s2-6cpr-gkdu
1
vulnerability VCID-asx6-ds7x-6ubz
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.27.0-2
5
url pkg:deb/debian/golang-golang-x-net@1:0.27.0-2?distro=trixie
purl pkg:deb/debian/golang-golang-x-net@1:0.27.0-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-73s2-6cpr-gkdu
1
vulnerability VCID-asx6-ds7x-6ubz
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-golang-x-net@1:0.27.0-2%3Fdistro=trixie
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-58190.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-58190.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-58190
reference_id
reference_type
scores
0
value 0.0001
scoring_system epss
scoring_elements 0.01106
published_at 2026-04-13T12:55:00Z
1
value 0.0001
scoring_system epss
scoring_elements 0.0115
published_at 2026-04-09T12:55:00Z
2
value 0.0001
scoring_system epss
scoring_elements 0.0111
published_at 2026-04-11T12:55:00Z
3
value 0.0001
scoring_system epss
scoring_elements 0.01104
published_at 2026-04-12T12:55:00Z
4
value 0.00011
scoring_system epss
scoring_elements 0.0142
published_at 2026-04-07T12:55:00Z
5
value 0.00011
scoring_system epss
scoring_elements 0.01425
published_at 2026-04-08T12:55:00Z
6
value 0.00011
scoring_system epss
scoring_elements 0.01212
published_at 2026-04-18T12:55:00Z
7
value 0.00011
scoring_system epss
scoring_elements 0.01199
published_at 2026-04-16T12:55:00Z
8
value 0.00015
scoring_system epss
scoring_elements 0.03356
published_at 2026-04-21T12:55:00Z
9
value 0.00015
scoring_system epss
scoring_elements 0.02814
published_at 2026-04-02T12:55:00Z
10
value 0.00019
scoring_system epss
scoring_elements 0.04826
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-58190
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58190
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58190
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127320
reference_id 1127320
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127320
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2437110
reference_id 2437110
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2437110
6
reference_url https://github.com/golang/vulndb/issues/4441
reference_id 4441
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-12T15:22:10Z/
url https://github.com/golang/vulndb/issues/4441
7
reference_url https://go.dev/cl/709875
reference_id 709875
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-12T15:22:10Z/
url https://go.dev/cl/709875
8
reference_url https://pkg.go.dev/vuln/GO-2026-4441
reference_id GO-2026-4441
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-12T15:22:10Z/
url https://pkg.go.dev/vuln/GO-2026-4441
9
reference_url https://access.redhat.com/errata/RHSA-2026:2571
reference_id RHSA-2026:2571
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2571
10
reference_url https://usn.ubuntu.com/8089-1/
reference_id USN-8089-1
reference_type
scores
url https://usn.ubuntu.com/8089-1/
11
reference_url https://usn.ubuntu.com/8089-2/
reference_id USN-8089-2
reference_type
scores
url https://usn.ubuntu.com/8089-2/
12
reference_url https://usn.ubuntu.com/8089-3/
reference_id USN-8089-3
reference_type
scores
url https://usn.ubuntu.com/8089-3/
Weaknesses
0
cwe_id 835
name Loop with Unreachable Exit Condition ('Infinite Loop')
description The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
Exploits
Severity_range_score4.3 - 5.3
Exploitability0.5
Weighted_severity4.8
Risk_score2.4
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-asx6-ds7x-6ubz