Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/rpm@4.16.1.3-r0?arch=loongarch64&distroversion=v3.21&reponame=community
Typeapk
Namespacealpine
Namerpm
Version4.16.1.3-r0
Qualifiers
arch loongarch64
distroversion v3.21
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version4.17.1-r0
Latest_non_vulnerable_version4.18.0-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2muf-r9ac-m3f4
vulnerability_id VCID-2muf-r9ac-m3f4
summary A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20271.json
reference_id
reference_type
scores
0
value 6.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20271.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-20271
reference_id
reference_type
scores
0
value 0.00228
scoring_system epss
scoring_elements 0.45645
published_at 2026-06-04T12:55:00Z
1
value 0.00228
scoring_system epss
scoring_elements 0.45714
published_at 2026-06-05T12:55:00Z
2
value 0.00228
scoring_system epss
scoring_elements 0.45717
published_at 2026-06-06T12:55:00Z
3
value 0.00228
scoring_system epss
scoring_elements 0.45698
published_at 2026-06-07T12:55:00Z
4
value 0.00228
scoring_system epss
scoring_elements 0.45672
published_at 2026-06-08T12:55:00Z
5
value 0.00228
scoring_system epss
scoring_elements 0.45686
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-20271
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20271
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20271
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1934125
reference_id 1934125
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1934125
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308
reference_id 985308
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308
6
reference_url https://security.gentoo.org/glsa/202107-43
reference_id GLSA-202107-43
reference_type
scores
url https://security.gentoo.org/glsa/202107-43
7
reference_url https://access.redhat.com/errata/RHSA-2021:2574
reference_id RHSA-2021:2574
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2574
8
reference_url https://access.redhat.com/errata/RHSA-2021:2791
reference_id RHSA-2021:2791
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2791
9
reference_url https://access.redhat.com/errata/RHSA-2021:4771
reference_id RHSA-2021:4771
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4771
10
reference_url https://access.redhat.com/errata/RHSA-2021:4785
reference_id RHSA-2021:4785
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4785
11
reference_url https://access.redhat.com/errata/RHSA-2021:4975
reference_id RHSA-2021:4975
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4975
12
reference_url https://usn.ubuntu.com/USN-5273-1/
reference_id USN-USN-5273-1
reference_type
scores
url https://usn.ubuntu.com/USN-5273-1/
fixed_packages
0
url pkg:apk/alpine/rpm@4.16.1.3-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/rpm@4.16.1.3-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/rpm@4.16.1.3-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2021-20271
risk_score 3.0
exploitability 0.5
weighted_severity 6.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2muf-r9ac-m3f4
1
url VCID-xx5j-qs55-xqgy
vulnerability_id VCID-xx5j-qs55-xqgy
summary A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. This flaw affects RPM versions before 4.17.0-alpha.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3421.json
reference_id
reference_type
scores
0
value 4.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3421.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3421
reference_id
reference_type
scores
0
value 0.00177
scoring_system epss
scoring_elements 0.38912
published_at 2026-06-04T12:55:00Z
1
value 0.00177
scoring_system epss
scoring_elements 0.38999
published_at 2026-06-05T12:55:00Z
2
value 0.00177
scoring_system epss
scoring_elements 0.39004
published_at 2026-06-06T12:55:00Z
3
value 0.00177
scoring_system epss
scoring_elements 0.38975
published_at 2026-06-07T12:55:00Z
4
value 0.00177
scoring_system epss
scoring_elements 0.38948
published_at 2026-06-08T12:55:00Z
5
value 0.00177
scoring_system epss
scoring_elements 0.3896
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3421
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3421
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3421
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1927747
reference_id 1927747
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1927747
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308
reference_id 985308
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308
6
reference_url https://security.gentoo.org/glsa/202107-43
reference_id GLSA-202107-43
reference_type
scores
url https://security.gentoo.org/glsa/202107-43
7
reference_url https://access.redhat.com/errata/RHSA-2021:2574
reference_id RHSA-2021:2574
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2574
8
reference_url https://access.redhat.com/errata/RHSA-2021:2791
reference_id RHSA-2021:2791
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2791
9
reference_url https://usn.ubuntu.com/USN-5273-1/
reference_id USN-USN-5273-1
reference_type
scores
url https://usn.ubuntu.com/USN-5273-1/
fixed_packages
0
url pkg:apk/alpine/rpm@4.16.1.3-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/rpm@4.16.1.3-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/rpm@4.16.1.3-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2021-3421
risk_score 2.1
exploitability 0.5
weighted_severity 4.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xx5j-qs55-xqgy
2
url VCID-y7z3-qxgg-q3bj
vulnerability_id VCID-y7z3-qxgg-q3bj
summary A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20266.json
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20266.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-20266
reference_id
reference_type
scores
0
value 0.00063
scoring_system epss
scoring_elements 0.19819
published_at 2026-06-04T12:55:00Z
1
value 0.00063
scoring_system epss
scoring_elements 0.19894
published_at 2026-06-05T12:55:00Z
2
value 0.00063
scoring_system epss
scoring_elements 0.19888
published_at 2026-06-06T12:55:00Z
3
value 0.00063
scoring_system epss
scoring_elements 0.19847
published_at 2026-06-07T12:55:00Z
4
value 0.00063
scoring_system epss
scoring_elements 0.19779
published_at 2026-06-08T12:55:00Z
5
value 0.00063
scoring_system epss
scoring_elements 0.19801
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-20266
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20266
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20266
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1927741
reference_id 1927741
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1927741
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308
reference_id 985308
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308
6
reference_url https://security.gentoo.org/glsa/202107-43
reference_id GLSA-202107-43
reference_type
scores
url https://security.gentoo.org/glsa/202107-43
7
reference_url https://access.redhat.com/errata/RHSA-2021:4489
reference_id RHSA-2021:4489
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4489
8
reference_url https://usn.ubuntu.com/USN-5273-1/
reference_id USN-USN-5273-1
reference_type
scores
url https://usn.ubuntu.com/USN-5273-1/
fixed_packages
0
url pkg:apk/alpine/rpm@4.16.1.3-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/rpm@4.16.1.3-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/rpm@4.16.1.3-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2021-20266
risk_score 1.4
exploitability 0.5
weighted_severity 2.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y7z3-qxgg-q3bj
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/rpm@4.16.1.3-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community