Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/zstd@1.3.8-r0?arch=riscv64&distroversion=v3.20&reponame=main

Type apk

Namespace alpine

Name zstd

Version 1.3.8-r0

Qualifiers

arch	riscv64
distroversion	v3.20
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 1.4.1-r0

Latest_non_vulnerable_version 1.4.9-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-6x5v-rxqv-gbce

vulnerability_id VCID-6x5v-rxqv-gbce

summary A race condition in the one-pass compression functions of Zstandard prior to version 1.3.8 could allow an attacker to write bytes out of bounds if an output buffer smaller than the recommended size was used.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11922.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11922.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11922

reference_id

reference_type

scores

value	0.00618
scoring_system	epss
scoring_elements	0.70347
published_at	2026-06-04T12:55:00Z

value	0.00618
scoring_system	epss
scoring_elements	0.70388
published_at	2026-06-05T12:55:00Z

value	0.00618
scoring_system	epss
scoring_elements	0.70397
published_at	2026-06-06T12:55:00Z

value	0.00618
scoring_system	epss
scoring_elements	0.70379
published_at	2026-06-07T12:55:00Z

value	0.00618
scoring_system	epss
scoring_elements	0.70368
published_at	2026-06-08T12:55:00Z

value	0.00618
scoring_system	epss
scoring_elements	0.7039
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11922

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11922
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11922

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2124187
reference_id	2124187
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2124187

reference_url	https://usn.ubuntu.com/4108-1/
reference_id	USN-4108-1
reference_type
scores
url	https://usn.ubuntu.com/4108-1/

reference_url	https://usn.ubuntu.com/5593-1/
reference_id	USN-5593-1
reference_type
scores
url	https://usn.ubuntu.com/5593-1/

fixed_packages

url	pkg:apk/alpine/zstd@1.3.8-r0?arch=riscv64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/zstd@1.3.8-r0?arch=riscv64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zstd@1.3.8-r0%3Farch=riscv64&distroversion=v3.20&reponame=main

aliases CVE-2019-11922

risk_score 3.6

exploitability 0.5

weighted_severity 7.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6x5v-rxqv-gbce

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zstd@1.3.8-r0%3Farch=riscv64&distroversion=v3.20&reponame=main

Package Instance