Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/org.apache.derby/derby@10.5.3.01

Type maven

Namespace org.apache.derby

Name derby

Version 10.5.3.01

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 10.17.1.0

Latest_non_vulnerable_version 10.17.1.0

Affected_by_vulnerabilities

url VCID-5cg7-pn6q-sbd4

vulnerability_id VCID-5cg7-pn6q-sbd4

summary Use of Password Hash With Insufficient Computational Effort in Apache Derby

references

reference_url

http://db.apache.org/derby/releases/release-10.6.1.0.cgi#Fix+for+Security+Bug+CVE-2009-4269

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://db.apache.org/derby/releases/release-10.6.1.0.cgi#Fix+for+Security+Bug+CVE-2009-4269

reference_url	http://db.apache.org/derby/releases/release-10.6.1.0.html#Fix+for+Security+Bug+CVE-2009-4269
reference_id
reference_type
scores
url	http://db.apache.org/derby/releases/release-10.6.1.0.html#Fix+for+Security+Bug+CVE-2009-4269

reference_url	http://marcellmajor.com/derbyhash.html
reference_id
reference_type
scores
url	http://marcellmajor.com/derbyhash.html

reference_url

http://marc.info/?l=apache-db-general&m=127428514905504&w=1

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://marc.info/?l=apache-db-general&m=127428514905504&w=1

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-4269

reference_id

reference_type

scores

value	0.00253
scoring_system	epss
scoring_elements	0.49045
published_at	2026-06-13T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.74191
published_at	2026-06-11T12:55:00Z

value	0.00784
scoring_system	epss
scoring_elements	0.74265
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-4269

reference_url

https://github.com/apache/derby/commit/178ca0cfb796b5a5788d25ded0978773ea254332

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/derby/commit/178ca0cfb796b5a5788d25ded0978773ea254332

reference_url

https://github.com/apache/derby/commit/23f97a597716ee5b08eff698b7177850ad8e1294

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/derby/commit/23f97a597716ee5b08eff698b7177850ad8e1294

reference_url

https://github.com/apache/derby/commit/3b82686e32a8d4fa2027350279104f9b243b35d6

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/derby/commit/3b82686e32a8d4fa2027350279104f9b243b35d6

reference_url

https://github.com/apache/derby/commit/60edeb0cb29daf9d28ece1863db779c1af5a3f62

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/derby/commit/60edeb0cb29daf9d28ece1863db779c1af5a3f62

reference_url

https://github.com/apache/derby/commit/8c305e2f3fad1c3a4f98c06c7f2b53e2bfdd308c

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/derby/commit/8c305e2f3fad1c3a4f98c06c7f2b53e2bfdd308c

reference_url

https://issues.apache.org/jira/browse/DERBY-4483

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://issues.apache.org/jira/browse/DERBY-4483

reference_url	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4269
reference_id
reference_type
scores
url	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4269

reference_url

http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2009-4269

reference_id

CVE-2009-4269

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2009-4269

reference_url

https://github.com/advisories/GHSA-fh32-35w2-rxcc

reference_id

GHSA-fh32-35w2-rxcc

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-fh32-35w2-rxcc

fixed_packages

url pkg:maven/org.apache.derby/derby@10.6.1.0

purl pkg:maven/org.apache.derby/derby@10.6.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-59pf-84nq-d3hj

vulnerability	VCID-p358-84b8-succ

vulnerability	VCID-x1u3-fhda-g3aa

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.derby/derby@10.6.1.0

aliases CVE-2009-4269, GHSA-fh32-35w2-rxcc

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5cg7-pn6q-sbd4

Fixing_vulnerabilities

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.derby/derby@10.5.3.01

Package Instance