Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/cups@1:1.3.7-11.el5_4?arch=4
Typerpm
Namespaceredhat
Namecups
Version1:1.3.7-11.el5_4
Qualifiers
arch 4
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-je74-qrqt-t3aq
vulnerability_id VCID-je74-qrqt-t3aq
summary 
Multiple vulnerabilities have been found in CUPS, some of which may
    allow execution of arbitrary code or local privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3553.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3553.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-3553
reference_id
reference_type
scores
0
value 0.09847
scoring_system epss
scoring_elements 0.93155
published_at 2026-06-11T12:55:00Z
1
value 0.09847
scoring_system epss
scoring_elements 0.93178
published_at 2026-06-12T12:55:00Z
2
value 0.09847
scoring_system epss
scoring_elements 0.93179
published_at 2026-06-13T12:55:00Z
3
value 0.09847
scoring_system epss
scoring_elements 0.9318
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-3553
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3553
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3553
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=530111
reference_id 530111
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=530111
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=557740
reference_id 557740
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=557740
5
reference_url https://security.gentoo.org/glsa/201207-10
reference_id GLSA-201207-10
reference_type
scores
url https://security.gentoo.org/glsa/201207-10
6
reference_url https://access.redhat.com/errata/RHSA-2009:1595
reference_id RHSA-2009:1595
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1595
7
reference_url https://usn.ubuntu.com/906-1/
reference_id USN-906-1
reference_type
scores
url https://usn.ubuntu.com/906-1/
fixed_packages
aliases CVE-2009-3553
risk_score 0.1
exploitability 0.5
weighted_severity 0.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-je74-qrqt-t3aq
1
url VCID-yfjg-mawt-hkcy
vulnerability_id VCID-yfjg-mawt-hkcy
summary The web interface in CUPS before 1.4.2, as used on Apple Mac OS X before 10.6.2 and other platforms, does not properly handle (1) HTTP headers and (2) HTML templates, which allows remote attackers to conduct cross-site scripting (XSS) attacks and HTTP response splitting attacks via vectors related to (a) the product's web interface, (b) the configuration of the print system, and (c) the titles of printed jobs, as demonstrated by an XSS attack that uses the kerberos parameter to the admin program, and leverages attribute injection and HTTP Parameter Pollution (HPP) issues.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2820.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2820.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-2820
reference_id
reference_type
scores
0
value 0.01995
scoring_system epss
scoring_elements 0.84012
published_at 2026-06-11T12:55:00Z
1
value 0.01995
scoring_system epss
scoring_elements 0.84069
published_at 2026-06-12T12:55:00Z
2
value 0.01995
scoring_system epss
scoring_elements 0.84076
published_at 2026-06-13T12:55:00Z
3
value 0.01995
scoring_system epss
scoring_elements 0.84072
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-2820
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2820
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2820
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=529833
reference_id 529833
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=529833
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555666
reference_id 555666
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555666
5
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/10001.txt
reference_id CVE-2009-2820;OSVDB-59854
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/10001.txt
6
reference_url https://www.securityfocus.com/bid/36958/info
reference_id CVE-2009-2820;OSVDB-59854
reference_type exploit
scores
url https://www.securityfocus.com/bid/36958/info
7
reference_url https://access.redhat.com/errata/RHSA-2009:1595
reference_id RHSA-2009:1595
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1595
8
reference_url https://usn.ubuntu.com/856-1/
reference_id USN-856-1
reference_type
scores
url https://usn.ubuntu.com/856-1/
fixed_packages
aliases CVE-2009-2820
risk_score null
exploitability 2.0
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yfjg-mawt-hkcy
Fixing_vulnerabilities
Risk_score0.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cups@1:1.3.7-11.el5_4%3Farch=4