Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/xorg@1:7.1.0-16

Type deb

Namespace debian

Name xorg

Version 1:7.1.0-16

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1:7.7+3~deb7u1

Latest_non_vulnerable_version 1:7.7+3~deb7u1

Affected_by_vulnerabilities

url VCID-1upw-fkfk-8bc8

vulnerability_id VCID-1upw-fkfk-8bc8

summary xorg-x11-server: wrapper security bypass

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4613.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4613.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4613

reference_id

reference_type

scores

value	0.00081
scoring_system	epss
scoring_elements	0.23827
published_at	2026-04-01T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2395
published_at	2026-04-02T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23991
published_at	2026-04-04T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23779
published_at	2026-04-07T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2385
published_at	2026-04-08T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23897
published_at	2026-04-09T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23913
published_at	2026-04-11T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23869
published_at	2026-04-12T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23812
published_at	2026-04-13T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23824
published_at	2026-04-16T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23813
published_at	2026-04-18T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23791
published_at	2026-04-21T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23675
published_at	2026-04-24T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23664
published_at	2026-04-26T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2363
published_at	2026-04-29T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23508
published_at	2026-05-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4613

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4613
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4613

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1872639
reference_id	1872639
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1872639

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652249
reference_id	652249
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652249

reference_url	https://usn.ubuntu.com/1349-1/
reference_id	USN-1349-1
reference_type
scores
url	https://usn.ubuntu.com/1349-1/

fixed_packages

url	pkg:deb/debian/xorg@1:7.7%2B3~deb7u1
purl	pkg:deb/debian/xorg@1:7.7%2B3~deb7u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg@1:7.7%252B3~deb7u1

aliases CVE-2011-4613

risk_score 10.0

exploitability 2.0

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1upw-fkfk-8bc8

url VCID-2rcg-bfjw-w7au

vulnerability_id VCID-2rcg-bfjw-w7au

summary The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-1093

reference_id

reference_type

scores

value	0.00083
scoring_system	epss
scoring_elements	0.24037
published_at	2026-04-24T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24026
published_at	2026-04-26T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.23985
published_at	2026-04-29T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.23876
published_at	2026-05-05T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33253
published_at	2026-04-08T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33288
published_at	2026-04-09T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33292
published_at	2026-04-11T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33251
published_at	2026-04-12T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33218
published_at	2026-04-01T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33267
published_at	2026-04-16T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33244
published_at	2026-04-18T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33208
published_at	2026-04-21T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33228
published_at	2026-04-13T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33347
published_at	2026-04-02T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33379
published_at	2026-04-04T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.3321
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-1093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1093

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=661627
reference_id	661627
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=661627

fixed_packages

url	pkg:deb/debian/xorg@1:7.7%2B3~deb7u1
purl	pkg:deb/debian/xorg@1:7.7%2B3~deb7u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg@1:7.7%252B3~deb7u1

aliases CVE-2012-1093

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2rcg-bfjw-w7au

Fixing_vulnerabilities

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg@1:7.1.0-16

Package Instance