Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/squid@4.12-1?distro=trixie
Typedeb
Namespacedebian
Namesquid
Version4.12-1
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version4.13-1
Latest_non_vulnerable_version7.5-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-6hvn-6cuu-duc1
vulnerability_id VCID-6hvn-6cuu-duc1
summary An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. Due to use of a potentially dangerous function, Squid and the default certificate validation helper are vulnerable to a Denial of Service when opening a TLS connection to an attacker-controlled server for HTTPS. This occurs because unrecognized error values are mapped to NULL, but later code expects that each error value is mapped to a valid error string.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14058.json
reference_id
reference_type
scores
0
value 7.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14058.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-14058
reference_id
reference_type
scores
0
value 0.00545
scoring_system epss
scoring_elements 0.68129
published_at 2026-06-04T12:55:00Z
1
value 0.00545
scoring_system epss
scoring_elements 0.68169
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-14058
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14058
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1852554
reference_id 1852554
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1852554
5
reference_url https://access.redhat.com/errata/RHSA-2020:4743
reference_id RHSA-2020:4743
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4743
fixed_packages
0
url pkg:deb/debian/squid@4.12-1?distro=trixie
purl pkg:deb/debian/squid@4.12-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@4.12-1%3Fdistro=trixie
1
url pkg:deb/debian/squid@4.13-10%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/squid@4.13-10%2Bdeb11u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-7sua-wuyu-cqby
2
vulnerability VCID-pshb-b8z8-gqhm
3
vulnerability VCID-qyjc-znbd-dub6
4
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@4.13-10%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/squid@5.7-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/squid@5.7-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-7sua-wuyu-cqby
2
vulnerability VCID-pshb-b8z8-gqhm
3
vulnerability VCID-qyjc-znbd-dub6
4
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@5.7-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/squid@6.13-2%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/squid@6.13-2%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-pshb-b8z8-gqhm
2
vulnerability VCID-qyjc-znbd-dub6
3
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@6.13-2%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/squid@7.5-1?distro=trixie
purl pkg:deb/debian/squid@7.5-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@7.5-1%3Fdistro=trixie
aliases CVE-2020-14058
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6hvn-6cuu-duc1
1
url VCID-krap-1qmx-t7ap
vulnerability_id VCID-krap-1qmx-t7ap
summary An issue was discovered in http/ContentLengthInterpreter.cc in Squid before 4.12 and 5.x before 5.0.3. A Request Smuggling and Poisoning attack can succeed against the HTTP cache. The client sends an HTTP request with a Content-Length header containing "+\ "-" or an uncommon shell whitespace character prefix to the length field-value.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15049.json
reference_id
reference_type
scores
0
value 8.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15049.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-15049
reference_id
reference_type
scores
0
value 0.15653
scoring_system epss
scoring_elements 0.94826
published_at 2026-06-04T12:55:00Z
1
value 0.15653
scoring_system epss
scoring_elements 0.94835
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-15049
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18860
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18860
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15049
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15049
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1852550
reference_id 1852550
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1852550
6
reference_url https://access.redhat.com/errata/RHSA-2020:4082
reference_id RHSA-2020:4082
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4082
7
reference_url https://access.redhat.com/errata/RHSA-2020:4743
reference_id RHSA-2020:4743
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4743
8
reference_url https://usn.ubuntu.com/4551-1/
reference_id USN-4551-1
reference_type
scores
url https://usn.ubuntu.com/4551-1/
9
reference_url https://usn.ubuntu.com/4895-1/
reference_id USN-4895-1
reference_type
scores
url https://usn.ubuntu.com/4895-1/
fixed_packages
0
url pkg:deb/debian/squid@4.12-1?distro=trixie
purl pkg:deb/debian/squid@4.12-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@4.12-1%3Fdistro=trixie
1
url pkg:deb/debian/squid@4.13-10%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/squid@4.13-10%2Bdeb11u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-7sua-wuyu-cqby
2
vulnerability VCID-pshb-b8z8-gqhm
3
vulnerability VCID-qyjc-znbd-dub6
4
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@4.13-10%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/squid@5.7-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/squid@5.7-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-7sua-wuyu-cqby
2
vulnerability VCID-pshb-b8z8-gqhm
3
vulnerability VCID-qyjc-znbd-dub6
4
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@5.7-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/squid@6.13-2%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/squid@6.13-2%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-pshb-b8z8-gqhm
2
vulnerability VCID-qyjc-znbd-dub6
3
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@6.13-2%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/squid@7.5-1?distro=trixie
purl pkg:deb/debian/squid@7.5-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@7.5-1%3Fdistro=trixie
aliases CVE-2020-15049
risk_score 3.9
exploitability 0.5
weighted_severity 7.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-krap-1qmx-t7ap
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@4.12-1%3Fdistro=trixie