Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/fribidi@1.0.12-r0?arch=loongarch64&distroversion=v3.21&reponame=main
Typeapk
Namespacealpine
Namefribidi
Version1.0.12-r0
Qualifiers
arch loongarch64
distroversion v3.21
reponame main
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-h66q-fe15-akcu
vulnerability_id VCID-h66q-fe15-akcu
summary A segmentation fault (SEGV) flaw was found in the Fribidi package and affects the fribidi_remove_bidi_marks() function of the lib/fribidi.c file. This flaw allows an attacker to pass a specially crafted file to Fribidi, leading to a crash and causing a denial of service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25310.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25310.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-25310
reference_id
reference_type
scores
0
value 0.00037
scoring_system epss
scoring_elements 0.11352
published_at 2026-06-04T12:55:00Z
1
value 0.00037
scoring_system epss
scoring_elements 0.1144
published_at 2026-06-05T12:55:00Z
2
value 0.00037
scoring_system epss
scoring_elements 0.11437
published_at 2026-06-06T12:55:00Z
3
value 0.00037
scoring_system epss
scoring_elements 0.11399
published_at 2026-06-07T12:55:00Z
4
value 0.00037
scoring_system epss
scoring_elements 0.1132
published_at 2026-06-08T12:55:00Z
5
value 0.00037
scoring_system epss
scoring_elements 0.11336
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-25310
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25310
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25310
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/fribidi/fribidi/issues/183
reference_id
reference_type
scores
url https://github.com/fribidi/fribidi/issues/183
5
reference_url https://github.com/fribidi/fribidi/pull/186
reference_id
reference_type
scores
url https://github.com/fribidi/fribidi/pull/186
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008793
reference_id 1008793
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008793
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2047923
reference_id 2047923
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2047923
8
reference_url https://access.redhat.com/security/cve/CVE-2022-25310
reference_id CVE-2022-25310
reference_type
scores
url https://access.redhat.com/security/cve/CVE-2022-25310
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-25310
reference_id CVE-2022-25310
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-25310
10
reference_url https://access.redhat.com/errata/RHSA-2022:7514
reference_id RHSA-2022:7514
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:7514
11
reference_url https://access.redhat.com/errata/RHSA-2022:8011
reference_id RHSA-2022:8011
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8011
12
reference_url https://usn.ubuntu.com/5366-1/
reference_id USN-5366-1
reference_type
scores
url https://usn.ubuntu.com/5366-1/
13
reference_url https://usn.ubuntu.com/5366-2/
reference_id USN-5366-2
reference_type
scores
url https://usn.ubuntu.com/5366-2/
14
reference_url https://usn.ubuntu.com/5922-1/
reference_id USN-5922-1
reference_type
scores
url https://usn.ubuntu.com/5922-1/
fixed_packages
0
url pkg:apk/alpine/fribidi@1.0.12-r0?arch=loongarch64&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/fribidi@1.0.12-r0?arch=loongarch64&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/fribidi@1.0.12-r0%3Farch=loongarch64&distroversion=v3.21&reponame=main
aliases CVE-2022-25310
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h66q-fe15-akcu
1
url VCID-ns7z-x1mb-tkag
vulnerability_id VCID-ns7z-x1mb-tkag
summary A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory leak or a denial of service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25308.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25308.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-25308
reference_id
reference_type
scores
0
value 0.00045
scoring_system epss
scoring_elements 0.14366
published_at 2026-06-04T12:55:00Z
1
value 0.00045
scoring_system epss
scoring_elements 0.14435
published_at 2026-06-05T12:55:00Z
2
value 0.00045
scoring_system epss
scoring_elements 0.14438
published_at 2026-06-06T12:55:00Z
3
value 0.00045
scoring_system epss
scoring_elements 0.14398
published_at 2026-06-07T12:55:00Z
4
value 0.00045
scoring_system epss
scoring_elements 0.14317
published_at 2026-06-08T12:55:00Z
5
value 0.00045
scoring_system epss
scoring_elements 0.14339
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-25308
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25308
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25308
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/fribidi/fribidi/issues/181
reference_id
reference_type
scores
url https://github.com/fribidi/fribidi/issues/181
5
reference_url https://github.com/fribidi/fribidi/pull/184
reference_id
reference_type
scores
url https://github.com/fribidi/fribidi/pull/184
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008793
reference_id 1008793
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008793
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2047890
reference_id 2047890
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2047890
8
reference_url https://access.redhat.com/security/cve/CVE-2022-25308
reference_id CVE-2022-25308
reference_type
scores
url https://access.redhat.com/security/cve/CVE-2022-25308
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-25308
reference_id CVE-2022-25308
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-25308
10
reference_url https://access.redhat.com/errata/RHSA-2022:7514
reference_id RHSA-2022:7514
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:7514
11
reference_url https://access.redhat.com/errata/RHSA-2022:8011
reference_id RHSA-2022:8011
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8011
12
reference_url https://usn.ubuntu.com/5366-1/
reference_id USN-5366-1
reference_type
scores
url https://usn.ubuntu.com/5366-1/
13
reference_url https://usn.ubuntu.com/5366-2/
reference_id USN-5366-2
reference_type
scores
url https://usn.ubuntu.com/5366-2/
14
reference_url https://usn.ubuntu.com/5922-1/
reference_id USN-5922-1
reference_type
scores
url https://usn.ubuntu.com/5922-1/
fixed_packages
0
url pkg:apk/alpine/fribidi@1.0.12-r0?arch=loongarch64&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/fribidi@1.0.12-r0?arch=loongarch64&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/fribidi@1.0.12-r0%3Farch=loongarch64&distroversion=v3.21&reponame=main
aliases CVE-2022-25308
risk_score 3.1
exploitability 0.5
weighted_severity 6.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ns7z-x1mb-tkag
2
url VCID-xpsy-p5x9-1kgp
vulnerability_id VCID-xpsy-p5x9-1kgp
summary A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the '--caprtl' option, leading to a crash and causing a denial of service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25309.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25309.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-25309
reference_id
reference_type
scores
0
value 0.00043
scoring_system epss
scoring_elements 0.13448
published_at 2026-06-04T12:55:00Z
1
value 0.00043
scoring_system epss
scoring_elements 0.13529
published_at 2026-06-05T12:55:00Z
2
value 0.00043
scoring_system epss
scoring_elements 0.13535
published_at 2026-06-06T12:55:00Z
3
value 0.00043
scoring_system epss
scoring_elements 0.13493
published_at 2026-06-07T12:55:00Z
4
value 0.00043
scoring_system epss
scoring_elements 0.13407
published_at 2026-06-08T12:55:00Z
5
value 0.00043
scoring_system epss
scoring_elements 0.1344
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-25309
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25309
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25309
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/fribidi/fribidi/commit/f22593b82b5d1668d1997dbccd10a9c31ffea3b3
reference_id
reference_type
scores
url https://github.com/fribidi/fribidi/commit/f22593b82b5d1668d1997dbccd10a9c31ffea3b3
5
reference_url https://github.com/fribidi/fribidi/issues/182
reference_id
reference_type
scores
url https://github.com/fribidi/fribidi/issues/182
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008793
reference_id 1008793
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008793
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2047896
reference_id 2047896
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2047896
8
reference_url https://access.redhat.com/security/cve/CVE-2022-25309
reference_id CVE-2022-25309
reference_type
scores
url https://access.redhat.com/security/cve/CVE-2022-25309
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-25309
reference_id CVE-2022-25309
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-25309
10
reference_url https://access.redhat.com/errata/RHSA-2022:7514
reference_id RHSA-2022:7514
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:7514
11
reference_url https://access.redhat.com/errata/RHSA-2022:8011
reference_id RHSA-2022:8011
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8011
12
reference_url https://usn.ubuntu.com/5366-1/
reference_id USN-5366-1
reference_type
scores
url https://usn.ubuntu.com/5366-1/
13
reference_url https://usn.ubuntu.com/5366-2/
reference_id USN-5366-2
reference_type
scores
url https://usn.ubuntu.com/5366-2/
14
reference_url https://usn.ubuntu.com/5922-1/
reference_id USN-5922-1
reference_type
scores
url https://usn.ubuntu.com/5922-1/
fixed_packages
0
url pkg:apk/alpine/fribidi@1.0.12-r0?arch=loongarch64&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/fribidi@1.0.12-r0?arch=loongarch64&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/fribidi@1.0.12-r0%3Farch=loongarch64&distroversion=v3.21&reponame=main
aliases CVE-2022-25309
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xpsy-p5x9-1kgp
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/fribidi@1.0.12-r0%3Farch=loongarch64&distroversion=v3.21&reponame=main