Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
Typeapk
Namespacealpine
Namesdl2
Version2.0.10-r0
Qualifiers
arch s390x
distroversion v3.21
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2.0.18-r0
Latest_non_vulnerable_version2.0.18-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-5duv-sj5g-t7cp
vulnerability_id VCID-5duv-sj5g-t7cp
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7635.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7635.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7635
reference_id
reference_type
scores
0
value 0.02151
scoring_system epss
scoring_elements 0.84564
published_at 2026-06-04T12:55:00Z
1
value 0.02151
scoring_system epss
scoring_elements 0.84589
published_at 2026-06-05T12:55:00Z
2
value 0.02151
scoring_system epss
scoring_elements 0.84594
published_at 2026-06-06T12:55:00Z
3
value 0.02151
scoring_system epss
scoring_elements 0.8459
published_at 2026-06-07T12:55:00Z
4
value 0.02151
scoring_system epss
scoring_elements 0.84577
published_at 2026-06-08T12:55:00Z
5
value 0.02151
scoring_system epss
scoring_elements 0.84591
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7635
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7635
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7635
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1677158
reference_id 1677158
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1677158
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932754
reference_id 932754
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932754
8
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932755
reference_id 932755
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932755
9
reference_url https://security.gentoo.org/glsa/201909-07
reference_id GLSA-201909-07
reference_type
scores
url https://security.gentoo.org/glsa/201909-07
10
reference_url https://security.gentoo.org/glsa/202305-17
reference_id GLSA-202305-17
reference_type
scores
url https://security.gentoo.org/glsa/202305-17
11
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
12
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
13
reference_url https://usn.ubuntu.com/4143-1/
reference_id USN-4143-1
reference_type
scores
url https://usn.ubuntu.com/4143-1/
14
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
15
reference_url https://usn.ubuntu.com/4156-2/
reference_id USN-4156-2
reference_type
scores
url https://usn.ubuntu.com/4156-2/
16
reference_url https://usn.ubuntu.com/4238-1/
reference_id USN-4238-1
reference_type
scores
url https://usn.ubuntu.com/4238-1/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7635
risk_score 2.3
exploitability 0.5
weighted_severity 4.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5duv-sj5g-t7cp
1
url VCID-dzk6-xvuw-akd5
vulnerability_id VCID-dzk6-xvuw-akd5
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7578.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7578.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7578
reference_id
reference_type
scores
0
value 0.03683
scoring_system epss
scoring_elements 0.88133
published_at 2026-06-04T12:55:00Z
1
value 0.03683
scoring_system epss
scoring_elements 0.88154
published_at 2026-06-05T12:55:00Z
2
value 0.03683
scoring_system epss
scoring_elements 0.88171
published_at 2026-06-09T12:55:00Z
3
value 0.03683
scoring_system epss
scoring_elements 0.88157
published_at 2026-06-06T12:55:00Z
4
value 0.03683
scoring_system epss
scoring_elements 0.88156
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7578
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7578
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7578
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1676781
reference_id 1676781
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1676781
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://security.gentoo.org/glsa/201909-07
reference_id GLSA-201909-07
reference_type
scores
url https://security.gentoo.org/glsa/201909-07
8
reference_url https://security.gentoo.org/glsa/202305-17
reference_id GLSA-202305-17
reference_type
scores
url https://security.gentoo.org/glsa/202305-17
9
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
10
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
11
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
12
reference_url https://usn.ubuntu.com/4156-2/
reference_id USN-4156-2
reference_type
scores
url https://usn.ubuntu.com/4156-2/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7578
risk_score 2.3
exploitability 0.5
weighted_severity 4.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dzk6-xvuw-akd5
2
url VCID-emm3-57ty-t7fr
vulnerability_id VCID-emm3-57ty-t7fr
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7574.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7574.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7574
reference_id
reference_type
scores
0
value 0.02609
scoring_system epss
scoring_elements 0.85916
published_at 2026-06-04T12:55:00Z
1
value 0.02609
scoring_system epss
scoring_elements 0.85938
published_at 2026-06-07T12:55:00Z
2
value 0.02609
scoring_system epss
scoring_elements 0.8594
published_at 2026-06-09T12:55:00Z
3
value 0.02609
scoring_system epss
scoring_elements 0.85941
published_at 2026-06-06T12:55:00Z
4
value 0.02609
scoring_system epss
scoring_elements 0.85926
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7574
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7574
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7574
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1676749
reference_id 1676749
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1676749
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://security.gentoo.org/glsa/201909-07
reference_id GLSA-201909-07
reference_type
scores
url https://security.gentoo.org/glsa/201909-07
8
reference_url https://security.gentoo.org/glsa/202305-17
reference_id GLSA-202305-17
reference_type
scores
url https://security.gentoo.org/glsa/202305-17
9
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
10
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
11
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
12
reference_url https://usn.ubuntu.com/4156-2/
reference_id USN-4156-2
reference_type
scores
url https://usn.ubuntu.com/4156-2/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7574
risk_score 2.3
exploitability 0.5
weighted_severity 4.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-emm3-57ty-t7fr
3
url VCID-hn4c-sgh2-d7c2
vulnerability_id VCID-hn4c-sgh2-d7c2
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Map1toN in video/SDL_pixels.c.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7638.json
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7638.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7638
reference_id
reference_type
scores
0
value 0.03683
scoring_system epss
scoring_elements 0.88133
published_at 2026-06-04T12:55:00Z
1
value 0.03683
scoring_system epss
scoring_elements 0.88154
published_at 2026-06-05T12:55:00Z
2
value 0.03683
scoring_system epss
scoring_elements 0.88171
published_at 2026-06-09T12:55:00Z
3
value 0.03683
scoring_system epss
scoring_elements 0.88157
published_at 2026-06-06T12:55:00Z
4
value 0.03683
scoring_system epss
scoring_elements 0.88156
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7638
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7638
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7638
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1677143
reference_id 1677143
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1677143
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://security.gentoo.org/glsa/201909-07
reference_id GLSA-201909-07
reference_type
scores
url https://security.gentoo.org/glsa/201909-07
8
reference_url https://security.gentoo.org/glsa/202305-17
reference_id GLSA-202305-17
reference_type
scores
url https://security.gentoo.org/glsa/202305-17
9
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
10
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
11
reference_url https://usn.ubuntu.com/4143-1/
reference_id USN-4143-1
reference_type
scores
url https://usn.ubuntu.com/4143-1/
12
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7638
risk_score 3.8
exploitability 0.5
weighted_severity 7.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hn4c-sgh2-d7c2
4
url VCID-pnyy-5umu-dbhs
vulnerability_id VCID-pnyy-5umu-dbhs
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in MS_ADPCM_decode in audio/SDL_wave.c.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7575.json
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7575.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7575
reference_id
reference_type
scores
0
value 0.02389
scoring_system epss
scoring_elements 0.85305
published_at 2026-06-04T12:55:00Z
1
value 0.02389
scoring_system epss
scoring_elements 0.85329
published_at 2026-06-07T12:55:00Z
2
value 0.02389
scoring_system epss
scoring_elements 0.85327
published_at 2026-06-09T12:55:00Z
3
value 0.02389
scoring_system epss
scoring_elements 0.85334
published_at 2026-06-06T12:55:00Z
4
value 0.02389
scoring_system epss
scoring_elements 0.85314
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7575
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7575
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7575
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1676743
reference_id 1676743
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1676743
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://security.gentoo.org/glsa/201909-07
reference_id GLSA-201909-07
reference_type
scores
url https://security.gentoo.org/glsa/201909-07
8
reference_url https://security.gentoo.org/glsa/202305-17
reference_id GLSA-202305-17
reference_type
scores
url https://security.gentoo.org/glsa/202305-17
9
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
10
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
11
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
12
reference_url https://usn.ubuntu.com/4156-2/
reference_id USN-4156-2
reference_type
scores
url https://usn.ubuntu.com/4156-2/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7575
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pnyy-5umu-dbhs
5
url VCID-ppey-m6mp-nkaz
vulnerability_id VCID-ppey-m6mp-nkaz
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7636.json
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7636.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7636
reference_id
reference_type
scores
0
value 0.03683
scoring_system epss
scoring_elements 0.88133
published_at 2026-06-04T12:55:00Z
1
value 0.03683
scoring_system epss
scoring_elements 0.88154
published_at 2026-06-05T12:55:00Z
2
value 0.03683
scoring_system epss
scoring_elements 0.88171
published_at 2026-06-09T12:55:00Z
3
value 0.03683
scoring_system epss
scoring_elements 0.88157
published_at 2026-06-06T12:55:00Z
4
value 0.03683
scoring_system epss
scoring_elements 0.88156
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7636
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7636
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7636
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1677156
reference_id 1677156
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1677156
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://security.gentoo.org/glsa/201909-07
reference_id GLSA-201909-07
reference_type
scores
url https://security.gentoo.org/glsa/201909-07
8
reference_url https://security.gentoo.org/glsa/202305-17
reference_id GLSA-202305-17
reference_type
scores
url https://security.gentoo.org/glsa/202305-17
9
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
10
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
11
reference_url https://usn.ubuntu.com/4143-1/
reference_id USN-4143-1
reference_type
scores
url https://usn.ubuntu.com/4143-1/
12
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
13
reference_url https://usn.ubuntu.com/4156-2/
reference_id USN-4156-2
reference_type
scores
url https://usn.ubuntu.com/4156-2/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7636
risk_score 3.8
exploitability 0.5
weighted_severity 7.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ppey-m6mp-nkaz
6
url VCID-rjeb-nfuh-tyhd
vulnerability_id VCID-rjeb-nfuh-tyhd
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (outside the wNumCoef loop).
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7576.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7576.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7576
reference_id
reference_type
scores
0
value 0.03683
scoring_system epss
scoring_elements 0.88133
published_at 2026-06-04T12:55:00Z
1
value 0.03683
scoring_system epss
scoring_elements 0.88154
published_at 2026-06-05T12:55:00Z
2
value 0.03683
scoring_system epss
scoring_elements 0.88171
published_at 2026-06-09T12:55:00Z
3
value 0.03683
scoring_system epss
scoring_elements 0.88157
published_at 2026-06-06T12:55:00Z
4
value 0.03683
scoring_system epss
scoring_elements 0.88156
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7576
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7576
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7576
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1676755
reference_id 1676755
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1676755
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://security.gentoo.org/glsa/201909-07
reference_id GLSA-201909-07
reference_type
scores
url https://security.gentoo.org/glsa/201909-07
8
reference_url https://security.gentoo.org/glsa/202305-17
reference_id GLSA-202305-17
reference_type
scores
url https://security.gentoo.org/glsa/202305-17
9
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
10
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
11
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
12
reference_url https://usn.ubuntu.com/4156-2/
reference_id USN-4156-2
reference_type
scores
url https://usn.ubuntu.com/4156-2/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7576
risk_score 2.3
exploitability 0.5
weighted_severity 4.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rjeb-nfuh-tyhd
7
url VCID-v67q-tzhy-yucw
vulnerability_id VCID-v67q-tzhy-yucw
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7572.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7572.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7572
reference_id
reference_type
scores
0
value 0.04477
scoring_system epss
scoring_elements 0.8929
published_at 2026-06-04T12:55:00Z
1
value 0.04477
scoring_system epss
scoring_elements 0.89308
published_at 2026-06-07T12:55:00Z
2
value 0.04477
scoring_system epss
scoring_elements 0.89309
published_at 2026-06-08T12:55:00Z
3
value 0.04477
scoring_system epss
scoring_elements 0.89326
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7572
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7572
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7572
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1676753
reference_id 1676753
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1676753
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://security.gentoo.org/glsa/201909-07
reference_id GLSA-201909-07
reference_type
scores
url https://security.gentoo.org/glsa/201909-07
8
reference_url https://security.gentoo.org/glsa/202305-17
reference_id GLSA-202305-17
reference_type
scores
url https://security.gentoo.org/glsa/202305-17
9
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
10
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
11
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
12
reference_url https://usn.ubuntu.com/4156-2/
reference_id USN-4156-2
reference_type
scores
url https://usn.ubuntu.com/4156-2/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7572
risk_score 3.2
exploitability 0.5
weighted_severity 6.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v67q-tzhy-yucw
8
url VCID-w7x6-gtaq-3kap
vulnerability_id VCID-w7x6-gtaq-3kap
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (inside the wNumCoef loop).
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7573.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7573.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7573
reference_id
reference_type
scores
0
value 0.02609
scoring_system epss
scoring_elements 0.8594
published_at 2026-06-09T12:55:00Z
1
value 0.02609
scoring_system epss
scoring_elements 0.85938
published_at 2026-06-07T12:55:00Z
2
value 0.02609
scoring_system epss
scoring_elements 0.85926
published_at 2026-06-08T12:55:00Z
3
value 0.0426
scoring_system epss
scoring_elements 0.89021
published_at 2026-06-06T12:55:00Z
4
value 0.0426
scoring_system epss
scoring_elements 0.89003
published_at 2026-06-04T12:55:00Z
5
value 0.0426
scoring_system epss
scoring_elements 0.8902
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7573
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7573
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7573
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1676751
reference_id 1676751
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1676751
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://security.gentoo.org/glsa/201909-07
reference_id GLSA-201909-07
reference_type
scores
url https://security.gentoo.org/glsa/201909-07
8
reference_url https://security.gentoo.org/glsa/202305-17
reference_id GLSA-202305-17
reference_type
scores
url https://security.gentoo.org/glsa/202305-17
9
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
10
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
11
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
12
reference_url https://usn.ubuntu.com/4156-2/
reference_id USN-4156-2
reference_type
scores
url https://usn.ubuntu.com/4156-2/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7573
risk_score 2.3
exploitability 0.5
weighted_severity 4.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w7x6-gtaq-3kap
9
url VCID-zgrk-fdys-1ffg
vulnerability_id VCID-zgrk-fdys-1ffg
summary SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7637.json
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7637.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7637
reference_id
reference_type
scores
0
value 0.0321
scoring_system epss
scoring_elements 0.87265
published_at 2026-06-04T12:55:00Z
1
value 0.0321
scoring_system epss
scoring_elements 0.87287
published_at 2026-06-05T12:55:00Z
2
value 0.0321
scoring_system epss
scoring_elements 0.87285
published_at 2026-06-06T12:55:00Z
3
value 0.0321
scoring_system epss
scoring_elements 0.87282
published_at 2026-06-07T12:55:00Z
4
value 0.0321
scoring_system epss
scoring_elements 0.87279
published_at 2026-06-08T12:55:00Z
5
value 0.0321
scoring_system epss
scoring_elements 0.87291
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7637
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7637
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7637
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1677151
reference_id 1677151
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1677151
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
reference_id 924609
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924609
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
reference_id 924610
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924610
7
reference_url https://access.redhat.com/errata/RHSA-2020:3868
reference_id RHSA-2020:3868
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3868
8
reference_url https://access.redhat.com/errata/RHSA-2020:4627
reference_id RHSA-2020:4627
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4627
9
reference_url https://usn.ubuntu.com/4143-1/
reference_id USN-4143-1
reference_type
scores
url https://usn.ubuntu.com/4143-1/
10
reference_url https://usn.ubuntu.com/4156-1/
reference_id USN-4156-1
reference_type
scores
url https://usn.ubuntu.com/4156-1/
11
reference_url https://usn.ubuntu.com/4156-2/
reference_id USN-4156-2
reference_type
scores
url https://usn.ubuntu.com/4156-2/
fixed_packages
0
url pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/sdl2@2.0.10-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2019-7637
risk_score 3.4
exploitability 0.5
weighted_severity 6.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zgrk-fdys-1ffg
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/sdl2@2.0.10-r0%3Farch=s390x&distroversion=v3.21&reponame=community