Django REST framework
Api Root
Package List
Package Instance
Format
json
api
admin
Package Instance
Lookup for vulnerable packages by Package URL.
Purl
pkg:pypi/slo-generator@1.1.1
Type
pypi
Namespace
Name
slo-generator
Version
1.1.1
Qualifiers
Subpath
Is_vulnerable
true
Next_non_vulnerable_version
2.0.1
Latest_non_vulnerable_version
2.0.1
Affected_by_vulnerabilities
0
url
VCID-ye8k-3kjh-h3bh
vulnerability_id
VCID-ye8k-3kjh-h3bh
summary
SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173
references
0
reference_url
http://packetstormsecurity.com/files/164426/Google-SLO-Generator-2.0.0-Code-Execution.html
reference_id
reference_type
scores
url
http://packetstormsecurity.com/files/164426/Google-SLO-Generator-2.0.0-Code-Execution.html
1
reference_url
https://github.com/advisories/GHSA-j28r-j54m-gpc4
reference_id
reference_type
scores
url
https://github.com/advisories/GHSA-j28r-j54m-gpc4
2
reference_url
https://github.com/google/slo-generator/commit/36318beab1b85d14bb860e45bea186b184690d5d
reference_id
reference_type
scores
url
https://github.com/google/slo-generator/commit/36318beab1b85d14bb860e45bea186b184690d5d
3
reference_url
https://github.com/google/slo-generator/pull/173
reference_id
reference_type
scores
url
https://github.com/google/slo-generator/pull/173
4
reference_url
https://github.com/google/slo-generator/releases/tag/v2.0.1
reference_id
reference_type
scores
url
https://github.com/google/slo-generator/releases/tag/v2.0.1
5
reference_url
https://github.com/pypa/advisory-database/tree/main/vulns/slo-generator/PYSEC-2021-429.yaml
reference_id
reference_type
scores
url
https://github.com/pypa/advisory-database/tree/main/vulns/slo-generator/PYSEC-2021-429.yaml
6
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2021-22557
reference_id
CVE-2021-22557
reference_type
scores
url
https://nvd.nist.gov/vuln/detail/CVE-2021-22557
fixed_packages
0
url
pkg:pypi/slo-generator@2.0.1
purl
pkg:pypi/slo-generator@2.0.1
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/slo-generator@2.0.1
aliases
CVE-2021-22557, GHSA-j28r-j54m-gpc4, PYSEC-2021-429
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-ye8k-3kjh-h3bh
Fixing_vulnerabilities
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/slo-generator@1.1.1
×
Create
None
×
Edit
None