Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/expat@2.2.7-r1?arch=armhf&distroversion=v3.22&reponame=main

Type apk

Namespace alpine

Name expat

Version 2.2.7-r1

Qualifiers

arch	armhf
distroversion	v3.22
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 2.4.3-r0

Latest_non_vulnerable_version 2.7.5-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-g68f-jqjp-ybcu

vulnerability_id VCID-g68f-jqjp-ybcu

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15903.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15903.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-15903

reference_id

reference_type

scores

value	0.00203
scoring_system	epss
scoring_elements	0.42585
published_at	2026-06-12T12:55:00Z

value	0.00203
scoring_system	epss
scoring_elements	0.42422
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-15903

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://seclists.org/bugtraq/2019/Nov/1

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Nov/1

reference_url

https://seclists.org/bugtraq/2019/Dec/17

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Dec/17

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1752592
reference_id	1752592
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1752592

reference_url

https://security.gentoo.org/glsa/201911-08

reference_id

201911-08

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://security.gentoo.org/glsa/201911-08

reference_url

https://seclists.org/bugtraq/2019/Dec/21

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Dec/21

reference_url

http://seclists.org/fulldisclosure/2019/Dec/23

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://seclists.org/fulldisclosure/2019/Dec/23

reference_url

https://seclists.org/bugtraq/2019/Dec/23

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Dec/23

reference_url

https://seclists.org/bugtraq/2019/Nov/24

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Nov/24

reference_url

http://seclists.org/fulldisclosure/2019/Dec/26

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://seclists.org/fulldisclosure/2019/Dec/26

reference_url

http://seclists.org/fulldisclosure/2019/Dec/27

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://seclists.org/fulldisclosure/2019/Dec/27

reference_url

https://seclists.org/bugtraq/2019/Oct/29

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Oct/29

reference_url

http://seclists.org/fulldisclosure/2019/Dec/30

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://seclists.org/fulldisclosure/2019/Dec/30

reference_url

https://seclists.org/bugtraq/2019/Sep/30

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Sep/30

reference_url

https://github.com/libexpat/libexpat/issues/317

reference_id

317

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://github.com/libexpat/libexpat/issues/317

reference_url

https://github.com/libexpat/libexpat/pull/318

reference_id

318

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://github.com/libexpat/libexpat/pull/318

reference_url

https://github.com/libexpat/libexpat/issues/342

reference_id

342

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://github.com/libexpat/libexpat/issues/342

reference_url

https://seclists.org/bugtraq/2019/Sep/37

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Sep/37

reference_url

https://usn.ubuntu.com/4132-1/

reference_id

4132-1

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4132-1/

reference_url

https://usn.ubuntu.com/4132-2/

reference_id

4132-2

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4132-2/

reference_url

https://usn.ubuntu.com/4165-1/

reference_id

4165-1

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4165-1/

reference_url

https://usn.ubuntu.com/4202-1/

reference_id

4202-1

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4202-1/

reference_url

https://usn.ubuntu.com/4335-1/

reference_id

4335-1

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4335-1/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939394
reference_id	939394
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939394

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TZKPJFTURRLXIGLB34WVKQ5HGY6JJA/

reference_id

A4TZKPJFTURRLXIGLB34WVKQ5HGY6JJA

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TZKPJFTURRLXIGLB34WVKQ5HGY6JJA/

reference_url	https://security.archlinux.org/ASA-201910-15
reference_id	ASA-201910-15
reference_type
scores
url	https://security.archlinux.org/ASA-201910-15

reference_url	https://security.archlinux.org/ASA-201910-16
reference_id	ASA-201910-16
reference_type
scores
url	https://security.archlinux.org/ASA-201910-16

reference_url	https://security.archlinux.org/ASA-201910-17
reference_id	ASA-201910-17
reference_type
scores
url	https://security.archlinux.org/ASA-201910-17

reference_url

https://security.archlinux.org/AVG-1053

reference_id

AVG-1053

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1053

reference_url

https://security.archlinux.org/AVG-1054

reference_id

AVG-1054

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1054

reference_url

https://security.archlinux.org/AVG-1055

reference_id

AVG-1055

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1055

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BDUTI5TVQWIGGQXPEVI4T2ENHFSBMIBP/

reference_id

BDUTI5TVQWIGGQXPEVI4T2ENHFSBMIBP

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BDUTI5TVQWIGGQXPEVI4T2ENHFSBMIBP/

reference_url

https://github.com/libexpat/libexpat/commit/c20b758c332d9a13afbbb276d30db1d183a85d43

reference_id

c20b758c332d9a13afbbb276d30db1d183a85d43

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://github.com/libexpat/libexpat/commit/c20b758c332d9a13afbbb276d30db1d183a85d43

reference_url

https://www.oracle.com/security-alerts/cpuapr2020.html

reference_id

cpuapr2020.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.oracle.com/security-alerts/cpuapr2020.html

reference_url

https://www.oracle.com/security-alerts/cpuoct2020.html

reference_id

cpuoct2020.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.oracle.com/security-alerts/cpuoct2020.html

reference_url

https://www.debian.org/security/2019/dsa-4530

reference_id

dsa-4530

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.debian.org/security/2019/dsa-4530

reference_url

https://www.debian.org/security/2019/dsa-4549

reference_id

dsa-4549

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.debian.org/security/2019/dsa-4549

reference_url

https://www.debian.org/security/2019/dsa-4571

reference_id

dsa-4571

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.debian.org/security/2019/dsa-4571

reference_url

https://support.apple.com/kb/HT210785

reference_id

HT210785

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210785

reference_url

https://support.apple.com/kb/HT210788

reference_id

HT210788

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210788

reference_url

https://support.apple.com/kb/HT210789

reference_id

HT210789

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210789

reference_url

https://support.apple.com/kb/HT210790

reference_id

HT210790

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210790

reference_url

https://support.apple.com/kb/HT210793

reference_id

HT210793

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210793

reference_url

https://support.apple.com/kb/HT210794

reference_id

HT210794

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210794

reference_url

https://support.apple.com/kb/HT210795

reference_id

HT210795

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210795

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_id

mfsa2019-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_id

mfsa2019-34

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_id

mfsa2019-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00000.html

reference_id

msg00000.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00000.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00002.html

reference_id

msg00002.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00002.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00003.html

reference_id

msg00003.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00003.html

reference_url

https://lists.debian.org/debian-lts-announce/2019/11/msg00006.html

reference_id

msg00006.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.debian.org/debian-lts-announce/2019/11/msg00006.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html

reference_id

msg00008.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00013.html

reference_id

msg00013.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00013.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00016.html

reference_id

msg00016.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00016.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00017.html

reference_url

https://lists.debian.org/debian-lts-announce/2019/11/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.debian.org/debian-lts-announce/2019/11/msg00017.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00018.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00019.html

reference_id

msg00019.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00019.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html

reference_id

msg00040.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00080.html

reference_id

msg00080.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00080.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00081.html

reference_id

msg00081.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00081.html

reference_url

https://security.netapp.com/advisory/ntap-20190926-0004/

reference_id

ntap-20190926-0004

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://security.netapp.com/advisory/ntap-20190926-0004/

reference_url	https://access.redhat.com/errata/RHSA-2019:3193
reference_id	RHSA-2019:3193
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3193

reference_url	https://access.redhat.com/errata/RHSA-2019:3196
reference_id	RHSA-2019:3196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3196

reference_url

https://access.redhat.com/errata/RHSA-2019:3210

reference_id

RHSA-2019:3210

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://access.redhat.com/errata/RHSA-2019:3210

reference_url

https://access.redhat.com/errata/RHSA-2019:3237

reference_id

RHSA-2019:3237

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://access.redhat.com/errata/RHSA-2019:3237

reference_url

https://access.redhat.com/errata/RHSA-2019:3756

reference_id

RHSA-2019:3756

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://access.redhat.com/errata/RHSA-2019:3756

reference_url	https://access.redhat.com/errata/RHSA-2020:2644
reference_id	RHSA-2020:2644
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2644

reference_url	https://access.redhat.com/errata/RHSA-2020:2646
reference_id	RHSA-2020:2646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2646

reference_url	https://access.redhat.com/errata/RHSA-2020:3952
reference_id	RHSA-2020:3952
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3952

reference_url	https://access.redhat.com/errata/RHSA-2020:4484
reference_id	RHSA-2020:4484
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4484

reference_url	https://access.redhat.com/errata/RHSA-2021:0949
reference_id	RHSA-2021:0949
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0949

reference_url	https://access.redhat.com/errata/RHSA-2025:22871
reference_id	RHSA-2025:22871
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22871

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S26LGXXQ7YF2BP3RGOWELBFKM6BHF6UG/

reference_id

S26LGXXQ7YF2BP3RGOWELBFKM6BHF6UG

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S26LGXXQ7YF2BP3RGOWELBFKM6BHF6UG/

reference_url

http://packetstormsecurity.com/files/154503/Slackware-Security-Advisory-expat-Updates.html

reference_id

Slackware-Security-Advisory-expat-Updates.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://packetstormsecurity.com/files/154503/Slackware-Security-Advisory-expat-Updates.html

reference_url

http://packetstormsecurity.com/files/154947/Slackware-Security-Advisory-mozilla-firefox-Updates.html

reference_id

Slackware-Security-Advisory-mozilla-firefox-Updates.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://packetstormsecurity.com/files/154947/Slackware-Security-Advisory-mozilla-firefox-Updates.html

reference_url

http://packetstormsecurity.com/files/154927/Slackware-Security-Advisory-python-Updates.html

reference_id

Slackware-Security-Advisory-python-Updates.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://packetstormsecurity.com/files/154927/Slackware-Security-Advisory-python-Updates.html

reference_url

https://www.tenable.com/security/tns-2021-11

reference_id

tns-2021-11

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.tenable.com/security/tns-2021-11

reference_url	https://usn.ubuntu.com/7199-1/
reference_id	USN-7199-1
reference_type
scores
url	https://usn.ubuntu.com/7199-1/

reference_url	https://usn.ubuntu.com/USN-4852-1/
reference_id	USN-USN-4852-1
reference_type
scores
url	https://usn.ubuntu.com/USN-4852-1/

reference_url	https://usn.ubuntu.com/USN-5455-1/
reference_id	USN-USN-5455-1
reference_type
scores
url	https://usn.ubuntu.com/USN-5455-1/

fixed_packages

url	pkg:apk/alpine/expat@2.2.7-r1?arch=armhf&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/expat@2.2.7-r1?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/expat@2.2.7-r1%3Farch=armhf&distroversion=v3.22&reponame=main

aliases CVE-2019-15903

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g68f-jqjp-ybcu

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/expat@2.2.7-r1%3Farch=armhf&distroversion=v3.22&reponame=main

Package Instance