Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/com.google.protobuf/protobuf-java@4.28.2

Type maven

Namespace com.google.protobuf

Name protobuf-java

Version 4.28.2

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-29vj-zsat-aybh

vulnerability_id VCID-29vj-zsat-aybh

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7254.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7254.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-7254

reference_id

reference_type

scores

value	0.00134
scoring_system	epss
scoring_elements	0.33072
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-7254

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7254
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7254

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/protocolbuffers/protobuf

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/protocolbuffers/protobuf

reference_url

https://github.com/protocolbuffers/protobuf/commit/4728531c162f2f9e8c2ca1add713cfee2db6be3b

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/protocolbuffers/protobuf/commit/4728531c162f2f9e8c2ca1add713cfee2db6be3b

reference_url

https://github.com/protocolbuffers/protobuf/commit/850fcce9176e2c9070614dab53537760498c926b

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/protocolbuffers/protobuf/commit/850fcce9176e2c9070614dab53537760498c926b

reference_url

https://github.com/protocolbuffers/protobuf/commit/9a5f5fe752a20cbac2e722b06949ac985abdd534

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/protocolbuffers/protobuf/commit/9a5f5fe752a20cbac2e722b06949ac985abdd534

reference_url

https://github.com/protocolbuffers/protobuf/commit/ac9fb5b4c71b0dd80985b27684e265d1f03abf46

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/protocolbuffers/protobuf/commit/ac9fb5b4c71b0dd80985b27684e265d1f03abf46

reference_url

https://github.com/protocolbuffers/protobuf/commit/d6c82fc55a76481c676f541a255571e8950bb8c3

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/protocolbuffers/protobuf/commit/d6c82fc55a76481c676f541a255571e8950bb8c3

reference_url

https://security.netapp.com/advisory/ntap-20241213-0010

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20241213-0010

reference_url

https://security.netapp.com/advisory/ntap-20250418-0006

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20250418-0006

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1082381
reference_id	1082381
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1082381

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2313454
reference_id	2313454
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2313454

reference_url

https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa

reference_id

cc8b3483a5584b3301e3d43d17eb59704857ffaa

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-19T14:29:43Z/

url

https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-7254

reference_id

CVE-2024-7254

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-7254

reference_url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/google-protobuf/CVE-2024-7254.yml

reference_id

CVE-2024-7254.YML

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/google-protobuf/CVE-2024-7254.yml

reference_url

https://github.com/advisories/GHSA-735f-pc8j-v9w8

reference_id

GHSA-735f-pc8j-v9w8

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-735f-pc8j-v9w8

reference_url

https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-735f-pc8j-v9w8

reference_id

GHSA-735f-pc8j-v9w8

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-735f-pc8j-v9w8

reference_url	https://access.redhat.com/errata/RHSA-2024:10700
reference_id	RHSA-2024:10700
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10700

reference_url	https://access.redhat.com/errata/RHSA-2024:11255
reference_id	RHSA-2024:11255
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11255

reference_url	https://access.redhat.com/errata/RHSA-2024:11256
reference_id	RHSA-2024:11256
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11256

reference_url	https://access.redhat.com/errata/RHSA-2024:7670
reference_id	RHSA-2024:7670
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7670

reference_url	https://access.redhat.com/errata/RHSA-2024:7676
reference_id	RHSA-2024:7676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7676

reference_url	https://access.redhat.com/errata/RHSA-2024:7972
reference_id	RHSA-2024:7972
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7972

reference_url	https://access.redhat.com/errata/RHSA-2024:8064
reference_id	RHSA-2024:8064
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8064

reference_url	https://access.redhat.com/errata/RHSA-2024:9571
reference_id	RHSA-2024:9571
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9571

reference_url	https://access.redhat.com/errata/RHSA-2025:20052
reference_id	RHSA-2025:20052
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20052

reference_url	https://access.redhat.com/errata/RHSA-2025:20057
reference_id	RHSA-2025:20057
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20057

reference_url	https://access.redhat.com/errata/RHSA-2025:7620
reference_id	RHSA-2025:7620
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7620

reference_url	https://access.redhat.com/errata/RHSA-2026:4915
reference_id	RHSA-2026:4915
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4915

reference_url	https://access.redhat.com/errata/RHSA-2026:4916
reference_id	RHSA-2026:4916
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4916

reference_url	https://access.redhat.com/errata/RHSA-2026:4917
reference_id	RHSA-2026:4917
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4917

reference_url	https://usn.ubuntu.com/7435-1/
reference_id	USN-7435-1
reference_type
scores
url	https://usn.ubuntu.com/7435-1/

reference_url	https://usn.ubuntu.com/7629-1/
reference_id	USN-7629-1
reference_type
scores
url	https://usn.ubuntu.com/7629-1/

reference_url	https://usn.ubuntu.com/7629-2/
reference_id	USN-7629-2
reference_type
scores
url	https://usn.ubuntu.com/7629-2/

fixed_packages

url	pkg:maven/com.google.protobuf/protobuf-java@3.25.5
purl	pkg:maven/com.google.protobuf/protobuf-java@3.25.5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-java@3.25.5

url	pkg:maven/com.google.protobuf/protobuf-java@4.27.5
purl	pkg:maven/com.google.protobuf/protobuf-java@4.27.5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-java@4.27.5

url	pkg:maven/com.google.protobuf/protobuf-java@4.28.2
purl	pkg:maven/com.google.protobuf/protobuf-java@4.28.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-java@4.28.2

aliases CVE-2024-7254, GHSA-735f-pc8j-v9w8

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-29vj-zsat-aybh

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.google.protobuf/protobuf-java@4.28.2

Package Instance