Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/devtoolset-2-httpcomponents-client@4.2.1-6?arch=el6
Typerpm
Namespaceredhat
Namedevtoolset-2-httpcomponents-client
Version4.2.1-6
Qualifiers
arch el6
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-da65-c1ce-v7f5
vulnerability_id VCID-da65-c1ce-v7f5
summary http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a certificate with a subject that specifies a common name in a field that is not the CN field. NOTE: this issue exists because of an incomplete fix for CVE-2012-5783.
references
0
reference_url http://rhn.redhat.com/errata/RHSA-2014-1098.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-1098.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2014-1833.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-1833.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2014-1834.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-1834.html
3
reference_url http://rhn.redhat.com/errata/RHSA-2014-1835.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-1835.html
4
reference_url http://rhn.redhat.com/errata/RHSA-2014-1836.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-1836.html
5
reference_url http://rhn.redhat.com/errata/RHSA-2014-1891.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-1891.html
6
reference_url http://rhn.redhat.com/errata/RHSA-2014-1892.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-1892.html
7
reference_url http://rhn.redhat.com/errata/RHSA-2015-0125.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0125.html
8
reference_url http://rhn.redhat.com/errata/RHSA-2015-0158.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0158.html
9
reference_url http://rhn.redhat.com/errata/RHSA-2015-0675.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0675.html
10
reference_url http://rhn.redhat.com/errata/RHSA-2015-0720.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0720.html
11
reference_url http://rhn.redhat.com/errata/RHSA-2015-0765.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0765.html
12
reference_url http://rhn.redhat.com/errata/RHSA-2015-0850.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0850.html
13
reference_url http://rhn.redhat.com/errata/RHSA-2015-0851.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0851.html
14
reference_url http://rhn.redhat.com/errata/RHSA-2015-1888.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-1888.html
15
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-6153.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-6153.json
16
reference_url https://access.redhat.com/solutions/1165533
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/solutions/1165533
17
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-6153
reference_id
reference_type
scores
0
value 0.01248
scoring_system epss
scoring_elements 0.79453
published_at 2026-05-12T12:55:00Z
1
value 0.01248
scoring_system epss
scoring_elements 0.79307
published_at 2026-04-13T12:55:00Z
2
value 0.01248
scoring_system epss
scoring_elements 0.7933
published_at 2026-04-18T12:55:00Z
3
value 0.01248
scoring_system epss
scoring_elements 0.79331
published_at 2026-04-21T12:55:00Z
4
value 0.01248
scoring_system epss
scoring_elements 0.79364
published_at 2026-04-24T12:55:00Z
5
value 0.01248
scoring_system epss
scoring_elements 0.79369
published_at 2026-04-26T12:55:00Z
6
value 0.01248
scoring_system epss
scoring_elements 0.79385
published_at 2026-04-29T12:55:00Z
7
value 0.01248
scoring_system epss
scoring_elements 0.79394
published_at 2026-05-05T12:55:00Z
8
value 0.01248
scoring_system epss
scoring_elements 0.79415
published_at 2026-05-07T12:55:00Z
9
value 0.01248
scoring_system epss
scoring_elements 0.79434
published_at 2026-05-09T12:55:00Z
10
value 0.01248
scoring_system epss
scoring_elements 0.79435
published_at 2026-05-11T12:55:00Z
11
value 0.01248
scoring_system epss
scoring_elements 0.79259
published_at 2026-04-01T12:55:00Z
12
value 0.01248
scoring_system epss
scoring_elements 0.79266
published_at 2026-04-02T12:55:00Z
13
value 0.01248
scoring_system epss
scoring_elements 0.7929
published_at 2026-04-04T12:55:00Z
14
value 0.01248
scoring_system epss
scoring_elements 0.79275
published_at 2026-04-07T12:55:00Z
15
value 0.01248
scoring_system epss
scoring_elements 0.79301
published_at 2026-04-08T12:55:00Z
16
value 0.01248
scoring_system epss
scoring_elements 0.7931
published_at 2026-04-09T12:55:00Z
17
value 0.01248
scoring_system epss
scoring_elements 0.79334
published_at 2026-04-16T12:55:00Z
18
value 0.01248
scoring_system epss
scoring_elements 0.79318
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-6153
18
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1129916
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1129916
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6153
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6153
20
reference_url https://github.com/apache/httpcomponents-client/commit/6e14fc146a66e0f3eb362f45f95d1a58ee18886a
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/httpcomponents-client/commit/6e14fc146a66e0f3eb362f45f95d1a58ee18886a
21
reference_url https://github.com/apache/httpcomponents-client/commit/b930227f907af1198765fc47beabbddae344ca7b
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/httpcomponents-client/commit/b930227f907af1198765fc47beabbddae344ca7b
22
reference_url https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05103564
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05103564
23
reference_url http://svn.apache.org/viewvc?view=revision&revision=1411705
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc?view=revision&revision=1411705
24
reference_url http://www.securityfocus.com/bid/69257
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/69257
25
reference_url http://www.ubuntu.com/usn/USN-2769-1
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.ubuntu.com/usn/USN-2769-1
26
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692442
reference_id 692442
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692442
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:commons-httpclient:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:commons-httpclient:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:commons-httpclient:*:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-6153
reference_id CVE-2012-6153
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:P/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2012-6153
29
reference_url https://github.com/advisories/GHSA-2x83-r56g-cv47
reference_id GHSA-2x83-r56g-cv47
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-2x83-r56g-cv47
30
reference_url https://access.redhat.com/errata/RHSA-2014:1098
reference_id RHSA-2014:1098
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1098
31
reference_url https://access.redhat.com/errata/RHSA-2014:1162
reference_id RHSA-2014:1162
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1162
32
reference_url https://access.redhat.com/errata/RHSA-2014:1163
reference_id RHSA-2014:1163
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1163
33
reference_url https://access.redhat.com/errata/RHSA-2014:1320
reference_id RHSA-2014:1320
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1320
34
reference_url https://access.redhat.com/errata/RHSA-2014:1321
reference_id RHSA-2014:1321
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1321
35
reference_url https://access.redhat.com/errata/RHSA-2014:1322
reference_id RHSA-2014:1322
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1322
36
reference_url https://access.redhat.com/errata/RHSA-2014:1323
reference_id RHSA-2014:1323
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1323
37
reference_url https://access.redhat.com/errata/RHSA-2014:1833
reference_id RHSA-2014:1833
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1833
38
reference_url https://access.redhat.com/errata/RHSA-2014:1834
reference_id RHSA-2014:1834
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1834
39
reference_url https://access.redhat.com/errata/RHSA-2014:1835
reference_id RHSA-2014:1835
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1835
40
reference_url https://access.redhat.com/errata/RHSA-2014:1836
reference_id RHSA-2014:1836
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1836
41
reference_url https://access.redhat.com/errata/RHSA-2014:1891
reference_id RHSA-2014:1891
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1891
42
reference_url https://access.redhat.com/errata/RHSA-2014:1892
reference_id RHSA-2014:1892
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1892
43
reference_url https://access.redhat.com/errata/RHSA-2014:1904
reference_id RHSA-2014:1904
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1904
44
reference_url https://access.redhat.com/errata/RHSA-2014:2019
reference_id RHSA-2014:2019
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:2019
45
reference_url https://access.redhat.com/errata/RHSA-2014:2020
reference_id RHSA-2014:2020
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:2020
46
reference_url https://access.redhat.com/errata/RHSA-2015:0125
reference_id RHSA-2015:0125
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0125
47
reference_url https://access.redhat.com/errata/RHSA-2015:0158
reference_id RHSA-2015:0158
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0158
48
reference_url https://access.redhat.com/errata/RHSA-2015:0234
reference_id RHSA-2015:0234
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0234
49
reference_url https://access.redhat.com/errata/RHSA-2015:0235
reference_id RHSA-2015:0235
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0235
50
reference_url https://access.redhat.com/errata/RHSA-2015:0675
reference_id RHSA-2015:0675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0675
51
reference_url https://access.redhat.com/errata/RHSA-2015:0720
reference_id RHSA-2015:0720
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0720
52
reference_url https://access.redhat.com/errata/RHSA-2015:0765
reference_id RHSA-2015:0765
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0765
53
reference_url https://access.redhat.com/errata/RHSA-2015:0850
reference_id RHSA-2015:0850
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0850
54
reference_url https://access.redhat.com/errata/RHSA-2015:0851
reference_id RHSA-2015:0851
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0851
55
reference_url https://access.redhat.com/errata/RHSA-2015:1009
reference_id RHSA-2015:1009
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:1009
56
reference_url https://access.redhat.com/errata/RHSA-2015:1888
reference_id RHSA-2015:1888
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:1888
57
reference_url https://usn.ubuntu.com/2769-1/
reference_id USN-2769-1
reference_type
scores
url https://usn.ubuntu.com/2769-1/
fixed_packages
aliases CVE-2012-6153, GHSA-2x83-r56g-cv47
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-da65-c1ce-v7f5
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/devtoolset-2-httpcomponents-client@4.2.1-6%3Farch=el6