Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/perl@4:5.8.8-32.el5_7?arch=6

Type rpm

Namespace redhat

Name perl

Version 4:5.8.8-32.el5_7

Qualifiers

arch	6

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url VCID-dk72-qs8p-kff5

vulnerability_id VCID-dk72-qs8p-kff5

summary CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline characters, a different vulnerability than CVE-2010-2761 and CVE-2010-3172.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4410.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4410.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-4410

reference_id

reference_type

scores

value	0.00845
scoring_system	epss
scoring_elements	0.75227
published_at	2026-06-11T12:55:00Z

value	0.00845
scoring_system	epss
scoring_elements	0.75298
published_at	2026-06-12T12:55:00Z

value	0.00845
scoring_system	epss
scoring_elements	0.75311
published_at	2026-06-13T12:55:00Z

value	0.00845
scoring_system	epss
scoring_elements	0.75307
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-4410

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4410
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4410

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606370
reference_id	606370
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606370

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606379
reference_id	606379
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606379

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606995
reference_id	606995
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606995

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=658976
reference_id	658976
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=658976

reference_url	https://access.redhat.com/errata/RHSA-2011:0558
reference_id	RHSA-2011:0558
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0558

reference_url	https://access.redhat.com/errata/RHSA-2011:1797
reference_id	RHSA-2011:1797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1797

reference_url	https://usn.ubuntu.com/1129-1/
reference_id	USN-1129-1
reference_type
scores
url	https://usn.ubuntu.com/1129-1/

fixed_packages

aliases CVE-2010-4410

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dk72-qs8p-kff5

url VCID-h44d-2ehr-23b5

vulnerability_id VCID-h44d-2ehr-23b5

summary

Multiple vulnerabilities were found in Bugzilla, the worst of which
    leading to privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2761.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2761.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-2761

reference_id

reference_type

scores

value	0.01848
scoring_system	epss
scoring_elements	0.83404
published_at	2026-06-11T12:55:00Z

value	0.01848
scoring_system	epss
scoring_elements	0.83464
published_at	2026-06-12T12:55:00Z

value	0.01848
scoring_system	epss
scoring_elements	0.83473
published_at	2026-06-13T12:55:00Z

value	0.01848
scoring_system	epss
scoring_elements	0.8347
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-2761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2761

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606370
reference_id	606370
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606370

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606379
reference_id	606379
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606379

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606995
reference_id	606995
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606995

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=658976
reference_id	658976
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=658976

reference_url	https://security.gentoo.org/glsa/201110-03
reference_id	GLSA-201110-03
reference_type
scores
url	https://security.gentoo.org/glsa/201110-03

reference_url	https://access.redhat.com/errata/RHSA-2011:0558
reference_id	RHSA-2011:0558
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0558

reference_url	https://access.redhat.com/errata/RHSA-2011:1797
reference_id	RHSA-2011:1797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1797

reference_url	https://usn.ubuntu.com/1129-1/
reference_id	USN-1129-1
reference_type
scores
url	https://usn.ubuntu.com/1129-1/

fixed_packages

aliases CVE-2010-2761

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h44d-2ehr-23b5

url

VCID-uwwe-7b96-rbb6

vulnerability_id

VCID-uwwe-7b96-rbb6

summary

A vulnerability has been found in the Digest-Base Perl module,
    allowing remote attackers to execute arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3597.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3597.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-3597

reference_id

reference_type

scores

value	0.09609
scoring_system	epss
scoring_elements	0.93054
published_at	2026-06-11T12:55:00Z

value	0.09609
scoring_system	epss
scoring_elements	0.93077
published_at	2026-06-12T12:55:00Z

value	0.09609
scoring_system	epss
scoring_elements	0.93079
published_at	2026-06-13T12:55:00Z

value	0.09609
scoring_system	epss
scoring_elements	0.93078
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-3597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3597

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644108
reference_id	644108
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644108

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=743010
reference_id	743010
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=743010

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/36199.txt
reference_id	CVE-2011-3597;OSVDB-75990
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/36199.txt

reference_url	https://www.securityfocus.com/bid/49911/info
reference_id	CVE-2011-3597;OSVDB-75990
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/49911/info

reference_url	https://security.gentoo.org/glsa/201401-33
reference_id	GLSA-201401-33
reference_type
scores
url	https://security.gentoo.org/glsa/201401-33

reference_url	https://access.redhat.com/errata/RHSA-2011:1424
reference_id	RHSA-2011:1424
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1424

reference_url	https://access.redhat.com/errata/RHSA-2011:1797
reference_id	RHSA-2011:1797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1797

reference_url	https://usn.ubuntu.com/1643-1/
reference_id	USN-1643-1
reference_type
scores
url	https://usn.ubuntu.com/1643-1/

fixed_packages

aliases

CVE-2011-3597

risk_score

0.2

exploitability

2.0

weighted_severity

0.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-uwwe-7b96-rbb6

Fixing_vulnerabilities

Risk_score 0.2

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/perl@4:5.8.8-32.el5_7%3Farch=6

Package Instance