Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/libx11@1.8.7-r0?arch=armhf&distroversion=v3.18&reponame=main

Type apk

Namespace alpine

Name libx11

Version 1.8.7-r0

Qualifiers

arch	armhf
distroversion	v3.18
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-bmmy-6s8t-skeb

vulnerability_id VCID-bmmy-6s8t-skeb

summary A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function. This flaw allows a local user to consume all available system resources and cause a denial of service condition.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43786.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43786.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-43786

reference_id

reference_type

scores

value	0.00084
scoring_system	epss
scoring_elements	0.24506
published_at	2026-06-05T12:55:00Z

value	0.00084
scoring_system	epss
scoring_elements	0.24492
published_at	2026-06-06T12:55:00Z

value	0.00084
scoring_system	epss
scoring_elements	0.24436
published_at	2026-06-07T12:55:00Z

value	0.00084
scoring_system	epss
scoring_elements	0.24377
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-43786

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43785
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43785

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43786
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43786

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43787
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43787

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=2242253

reference_id

2242253

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-25T16:06:07Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=2242253

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id	cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id	cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id	cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id	cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7

reference_url

https://access.redhat.com/security/cve/CVE-2023-43786

reference_id

CVE-2023-43786

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-25T16:06:07Z/

url

https://access.redhat.com/security/cve/CVE-2023-43786

reference_url	https://security.gentoo.org/glsa/202407-21
reference_id	GLSA-202407-21
reference_type
scores
url	https://security.gentoo.org/glsa/202407-21

reference_url

https://access.redhat.com/errata/RHSA-2024:2145

reference_id

RHSA-2024:2145

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-25T16:06:07Z/

url

https://access.redhat.com/errata/RHSA-2024:2145

reference_url

https://access.redhat.com/errata/RHSA-2024:2973

reference_id

RHSA-2024:2973

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-25T16:06:07Z/

url

https://access.redhat.com/errata/RHSA-2024:2973

reference_url	https://usn.ubuntu.com/6407-1/
reference_id	USN-6407-1
reference_type
scores
url	https://usn.ubuntu.com/6407-1/

reference_url	https://usn.ubuntu.com/6407-2/
reference_id	USN-6407-2
reference_type
scores
url	https://usn.ubuntu.com/6407-2/

reference_url	https://usn.ubuntu.com/6408-1/
reference_id	USN-6408-1
reference_type
scores
url	https://usn.ubuntu.com/6408-1/

reference_url	https://usn.ubuntu.com/6408-2/
reference_id	USN-6408-2
reference_type
scores
url	https://usn.ubuntu.com/6408-2/

fixed_packages

url	pkg:apk/alpine/libx11@1.8.7-r0?arch=armhf&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/libx11@1.8.7-r0?arch=armhf&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libx11@1.8.7-r0%3Farch=armhf&distroversion=v3.18&reponame=main

aliases CVE-2023-43786

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bmmy-6s8t-skeb

url VCID-h7xt-jzsp-x7cn

vulnerability_id VCID-h7xt-jzsp-x7cn

summary A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43785.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43785.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-43785

reference_id

reference_type

scores

value	0.001
scoring_system	epss
scoring_elements	0.27304
published_at	2026-06-05T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27252
published_at	2026-06-06T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27212
published_at	2026-06-07T12:55:00Z

value	0.001
scoring_system	epss
scoring_elements	0.27164
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-43785

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43785
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43785

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43786
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43786

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43787
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43787

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=2242252

reference_id

2242252

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-25T15:44:16Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=2242252

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id	cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id	cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id	cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id	cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7

reference_url

https://access.redhat.com/security/cve/CVE-2023-43785

reference_id

CVE-2023-43785

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-25T15:44:16Z/

url

https://access.redhat.com/security/cve/CVE-2023-43785

reference_url	https://security.gentoo.org/glsa/202407-21
reference_id	GLSA-202407-21
reference_type
scores
url	https://security.gentoo.org/glsa/202407-21

reference_url

https://access.redhat.com/errata/RHSA-2024:2145

reference_id

RHSA-2024:2145

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-25T15:44:16Z/

url

https://access.redhat.com/errata/RHSA-2024:2145

reference_url

https://access.redhat.com/errata/RHSA-2024:2973

reference_id

RHSA-2024:2973

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-25T15:44:16Z/

url

https://access.redhat.com/errata/RHSA-2024:2973

reference_url	https://usn.ubuntu.com/6407-1/
reference_id	USN-6407-1
reference_type
scores
url	https://usn.ubuntu.com/6407-1/

reference_url	https://usn.ubuntu.com/6407-2/
reference_id	USN-6407-2
reference_type
scores
url	https://usn.ubuntu.com/6407-2/

fixed_packages

url	pkg:apk/alpine/libx11@1.8.7-r0?arch=armhf&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/libx11@1.8.7-r0?arch=armhf&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libx11@1.8.7-r0%3Farch=armhf&distroversion=v3.18&reponame=main

aliases CVE-2023-43785

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h7xt-jzsp-x7cn

url VCID-wapj-ku4e-t3bp

vulnerability_id VCID-wapj-ku4e-t3bp

summary A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function. This flaw allows a local user to trigger an integer overflow and execute arbitrary code with elevated privileges.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43787.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43787.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-43787

reference_id

reference_type

scores

value	0.00042
scoring_system	epss
scoring_elements	0.13077
published_at	2026-06-05T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.13081
published_at	2026-06-06T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.13042
published_at	2026-06-07T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.12955
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-43787

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43785
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43785

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43786
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43786

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43787
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43787

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=2242254

reference_id

2242254

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-29T18:42:49Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=2242254

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id	cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id	cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id	cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id	cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7

reference_url

https://access.redhat.com/security/cve/CVE-2023-43787

reference_id

CVE-2023-43787

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-29T18:42:49Z/

url

https://access.redhat.com/security/cve/CVE-2023-43787

reference_url	https://security.gentoo.org/glsa/202407-21
reference_id	GLSA-202407-21
reference_type
scores
url	https://security.gentoo.org/glsa/202407-21

reference_url

https://access.redhat.com/errata/RHSA-2024:2145

reference_id

RHSA-2024:2145

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-29T18:42:49Z/

url

https://access.redhat.com/errata/RHSA-2024:2145

reference_url

https://access.redhat.com/errata/RHSA-2024:2973

reference_id

RHSA-2024:2973

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-29T18:42:49Z/

url

https://access.redhat.com/errata/RHSA-2024:2973

reference_url	https://usn.ubuntu.com/6407-1/
reference_id	USN-6407-1
reference_type
scores
url	https://usn.ubuntu.com/6407-1/

reference_url	https://usn.ubuntu.com/6407-2/
reference_id	USN-6407-2
reference_type
scores
url	https://usn.ubuntu.com/6407-2/

reference_url	https://usn.ubuntu.com/6408-1/
reference_id	USN-6408-1
reference_type
scores
url	https://usn.ubuntu.com/6408-1/

reference_url	https://usn.ubuntu.com/6408-2/
reference_id	USN-6408-2
reference_type
scores
url	https://usn.ubuntu.com/6408-2/

fixed_packages

url	pkg:apk/alpine/libx11@1.8.7-r0?arch=armhf&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/libx11@1.8.7-r0?arch=armhf&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libx11@1.8.7-r0%3Farch=armhf&distroversion=v3.18&reponame=main

aliases CVE-2023-43787

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wapj-ku4e-t3bp

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libx11@1.8.7-r0%3Farch=armhf&distroversion=v3.18&reponame=main

Package Instance