Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community

Type apk

Namespace alpine

Name opensc

Version 0.20.0-r0

Qualifiers

arch	mips64
distroversion	v3.13
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version 0.21.0-r0

Latest_non_vulnerable_version 0.21.0-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1ntg-3yvw-bkcx

vulnerability_id VCID-1ntg-3yvw-bkcx

summary sc_context_create in ctx.c in libopensc in OpenSC 0.19.0 has a memory leak, as demonstrated by a call from eidenv.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6502.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6502.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-6502

reference_id

reference_type

scores

value	0.00199
scoring_system	epss
scoring_elements	0.41939
published_at	2026-06-05T12:55:00Z

value	0.00199
scoring_system	epss
scoring_elements	0.41863
published_at	2026-06-04T12:55:00Z

value	0.00199
scoring_system	epss
scoring_elements	0.4192
published_at	2026-06-07T12:55:00Z

value	0.00199
scoring_system	epss
scoring_elements	0.41885
published_at	2026-06-08T12:55:00Z

value	0.00199
scoring_system	epss
scoring_elements	0.41949
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-6502

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6502
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6502

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1668933
reference_id	1668933
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1668933

reference_url	https://security.archlinux.org/ASA-202003-2
reference_id	ASA-202003-2
reference_type
scores
url	https://security.archlinux.org/ASA-202003-2

reference_url

https://security.archlinux.org/AVG-1106

reference_id

AVG-1106

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1106

fixed_packages

url	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/opensc@0.20.0-r0%3Farch=mips64&distroversion=v3.13&reponame=community

aliases CVE-2019-6502

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1ntg-3yvw-bkcx

url VCID-7xnd-jzt9-zyck

vulnerability_id VCID-7xnd-jzt9-zyck

summary OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry in libopensc/asn1.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15946.json

reference_id

reference_type

scores

value	6.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15946.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-15946

reference_id

reference_type

scores

value	0.00092
scoring_system	epss
scoring_elements	0.25864
published_at	2026-06-04T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25857
published_at	2026-06-08T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25959
published_at	2026-06-06T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25914
published_at	2026-06-07T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25966
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-15946

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15946
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15946

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1765229
reference_id	1765229
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1765229

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939669
reference_id	939669
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939669

reference_url	https://security.archlinux.org/ASA-202003-2
reference_id	ASA-202003-2
reference_type
scores
url	https://security.archlinux.org/ASA-202003-2

reference_url

https://security.archlinux.org/AVG-1106

reference_id

AVG-1106

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1106

reference_url	https://access.redhat.com/errata/RHSA-2020:4483
reference_id	RHSA-2020:4483
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4483

reference_url	https://usn.ubuntu.com/USN-5281-1/
reference_id	USN-USN-5281-1
reference_type
scores
url	https://usn.ubuntu.com/USN-5281-1/

fixed_packages

url	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/opensc@0.20.0-r0%3Farch=mips64&distroversion=v3.13&reponame=community

aliases CVE-2019-15946

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7xnd-jzt9-zyck

url VCID-edw5-sxju-g7ca

vulnerability_id VCID-edw5-sxju-g7ca

summary An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-setcos.c has an incorrect read operation during parsing of a SETCOS file attribute.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19479.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19479.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-19479

reference_id

reference_type

scores

value	0.00095
scoring_system	epss
scoring_elements	0.26369
published_at	2026-06-04T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26365
published_at	2026-06-08T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26463
published_at	2026-06-06T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26421
published_at	2026-06-07T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26473
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-19479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19479

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1782519
reference_id	1782519
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1782519

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947383
reference_id	947383
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947383

reference_url	https://security.archlinux.org/ASA-202003-2
reference_id	ASA-202003-2
reference_type
scores
url	https://security.archlinux.org/ASA-202003-2

reference_url

https://security.archlinux.org/AVG-1106

reference_id

AVG-1106

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1106

reference_url	https://access.redhat.com/errata/RHSA-2020:4483
reference_id	RHSA-2020:4483
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4483

fixed_packages

url	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/opensc@0.20.0-r0%3Farch=mips64&distroversion=v3.13&reponame=community

aliases CVE-2019-19479

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-edw5-sxju-g7ca

url VCID-g4fp-v7w7-3fdd

vulnerability_id VCID-g4fp-v7w7-3fdd

summary OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string in libopensc/asn1.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15945.json

reference_id

reference_type

scores

value	6.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15945.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-15945

reference_id

reference_type

scores

value	0.00113
scoring_system	epss
scoring_elements	0.29523
published_at	2026-06-04T12:55:00Z

value	0.00113
scoring_system	epss
scoring_elements	0.29488
published_at	2026-06-08T12:55:00Z

value	0.00113
scoring_system	epss
scoring_elements	0.29554
published_at	2026-06-06T12:55:00Z

value	0.00113
scoring_system	epss
scoring_elements	0.29521
published_at	2026-06-07T12:55:00Z

value	0.00113
scoring_system	epss
scoring_elements	0.29592
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-15945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15945

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1765222
reference_id	1765222
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1765222

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939668
reference_id	939668
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939668

reference_url	https://security.archlinux.org/ASA-202003-2
reference_id	ASA-202003-2
reference_type
scores
url	https://security.archlinux.org/ASA-202003-2

reference_url

https://security.archlinux.org/AVG-1106

reference_id

AVG-1106

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1106

reference_url	https://access.redhat.com/errata/RHSA-2020:4483
reference_id	RHSA-2020:4483
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4483

reference_url	https://usn.ubuntu.com/USN-5281-1/
reference_id	USN-USN-5281-1
reference_type
scores
url	https://usn.ubuntu.com/USN-5281-1/

fixed_packages

url	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/opensc@0.20.0-r0%3Farch=mips64&distroversion=v3.13&reponame=community

aliases CVE-2019-15945

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g4fp-v7w7-3fdd

url VCID-mvem-x9s6-hufb

vulnerability_id VCID-mvem-x9s6-hufb

summary An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-cac1.c mishandles buffer limits for CAC certificates.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19481.json

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19481.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-19481

reference_id

reference_type

scores

value	0.00123
scoring_system	epss
scoring_elements	0.3095
published_at	2026-06-04T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.30917
published_at	2026-06-08T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.30984
published_at	2026-06-06T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.30949
published_at	2026-06-07T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31016
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-19481

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19481
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19481

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1782955
reference_id	1782955
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1782955

reference_url	https://security.archlinux.org/ASA-202003-2
reference_id	ASA-202003-2
reference_type
scores
url	https://security.archlinux.org/ASA-202003-2

reference_url

https://security.archlinux.org/AVG-1106

reference_id

AVG-1106

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1106

reference_url	https://access.redhat.com/errata/RHSA-2020:4483
reference_id	RHSA-2020:4483
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4483

fixed_packages

url	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/opensc@0.20.0-r0%3Farch=mips64&distroversion=v3.13&reponame=community

aliases CVE-2019-19481

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mvem-x9s6-hufb

url VCID-y6vv-9srz-73c4

vulnerability_id VCID-y6vv-9srz-73c4

summary An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/pkcs15-prkey.c has an incorrect free operation in sc_pkcs15_decode_prkdf_entry.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19480.json

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19480.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-19480

reference_id

reference_type

scores

value	0.0019
scoring_system	epss
scoring_elements	0.407
published_at	2026-06-04T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40778
published_at	2026-06-05T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40722
published_at	2026-06-08T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40782
published_at	2026-06-06T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40753
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-19480

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1782950
reference_id	1782950
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1782950

reference_url	https://security.archlinux.org/ASA-202003-2
reference_id	ASA-202003-2
reference_type
scores
url	https://security.archlinux.org/ASA-202003-2

reference_url

https://security.archlinux.org/AVG-1106

reference_id

AVG-1106

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1106

fixed_packages

url	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/opensc@0.20.0-r0?arch=mips64&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/opensc@0.20.0-r0%3Farch=mips64&distroversion=v3.13&reponame=community

aliases CVE-2019-19480

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y6vv-9srz-73c4

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/opensc@0.20.0-r0%3Farch=mips64&distroversion=v3.13&reponame=community

Package Instance