Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/bind@9.14.1-r0?arch=x86&distroversion=v3.17&reponame=main
Typeapk
Namespacealpine
Namebind
Version9.14.1-r0
Qualifiers
arch x86
distroversion v3.17
reponame main
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version9.14.4-r0
Latest_non_vulnerable_version9.18.31-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-j6f1-k9nz-j3bh
vulnerability_id VCID-j6f1-k9nz-j3bh
summary A programming error in the nxdomain-redirect feature can cause an assertion failure in query.c if the alternate namespace used by nxdomain-redirect is a descendant of a zone that is served locally. The most likely scenario where this might occur is if the server, in addition to performing NXDOMAIN redirection for recursive clients, is also serving a local copy of the root zone or using mirroring to provide the root zone, although other configurations are also possible. Versions affected: BIND 9.12.0-> 9.12.4, 9.14.0. Also affects all releases in the 9.13 development branch.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6467.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6467.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-6467
reference_id
reference_type
scores
0
value 0.17224
scoring_system epss
scoring_elements 0.95148
published_at 2026-06-04T12:55:00Z
1
value 0.17224
scoring_system epss
scoring_elements 0.95157
published_at 2026-06-05T12:55:00Z
2
value 0.17224
scoring_system epss
scoring_elements 0.95158
published_at 2026-06-06T12:55:00Z
3
value 0.17224
scoring_system epss
scoring_elements 0.95159
published_at 2026-06-08T12:55:00Z
4
value 0.17224
scoring_system epss
scoring_elements 0.95163
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-6467
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1702545
reference_id 1702545
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1702545
fixed_packages
0
url pkg:apk/alpine/bind@9.14.1-r0?arch=x86&distroversion=v3.17&reponame=main
purl pkg:apk/alpine/bind@9.14.1-r0?arch=x86&distroversion=v3.17&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.14.1-r0%3Farch=x86&distroversion=v3.17&reponame=main
aliases CVE-2019-6467
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j6f1-k9nz-j3bh
1
url VCID-vbk8-2s3p-mfcf
vulnerability_id VCID-vbk8-2s3p-mfcf
summary By design, BIND is intended to limit the number of TCP clients that can be connected at any given time. The number of allowed connections is a tunable parameter which, if unset, defaults to a conservative value for most servers. Unfortunately, the code which was intended to limit the number of simultaneous connections contained an error which could be exploited to grow the number of simultaneous connections beyond this limit. Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.6, 9.12.0 -> 9.12.4, 9.14.0. BIND 9 Supported Preview Edition versions 9.9.3-S1 -> 9.11.5-S3, and 9.11.5-S5. Versions 9.13.0 -> 9.13.7 of the 9.13 development branch are also affected. Versions prior to BIND 9.9.0 have not been evaluated for vulnerability to CVE-2018-5743.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5743.json
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5743.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-5743
reference_id
reference_type
scores
0
value 0.05693
scoring_system epss
scoring_elements 0.90567
published_at 2026-06-04T12:55:00Z
1
value 0.05693
scoring_system epss
scoring_elements 0.90581
published_at 2026-06-06T12:55:00Z
2
value 0.05693
scoring_system epss
scoring_elements 0.90594
published_at 2026-06-09T12:55:00Z
3
value 0.05693
scoring_system epss
scoring_elements 0.90579
published_at 2026-06-07T12:55:00Z
4
value 0.05693
scoring_system epss
scoring_elements 0.90578
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-5743
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5743
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5743
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5745
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5745
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6465
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6465
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1702541
reference_id 1702541
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1702541
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927932
reference_id 927932
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927932
8
reference_url https://access.redhat.com/errata/RHSA-2019:1145
reference_id RHSA-2019:1145
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1145
9
reference_url https://access.redhat.com/errata/RHSA-2019:1294
reference_id RHSA-2019:1294
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1294
10
reference_url https://access.redhat.com/errata/RHSA-2019:1492
reference_id RHSA-2019:1492
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1492
11
reference_url https://access.redhat.com/errata/RHSA-2019:2698
reference_id RHSA-2019:2698
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2698
12
reference_url https://access.redhat.com/errata/RHSA-2019:2977
reference_id RHSA-2019:2977
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2977
13
reference_url https://usn.ubuntu.com/3956-1/
reference_id USN-3956-1
reference_type
scores
url https://usn.ubuntu.com/3956-1/
14
reference_url https://usn.ubuntu.com/3956-2/
reference_id USN-3956-2
reference_type
scores
url https://usn.ubuntu.com/3956-2/
fixed_packages
0
url pkg:apk/alpine/bind@9.14.1-r0?arch=x86&distroversion=v3.17&reponame=main
purl pkg:apk/alpine/bind@9.14.1-r0?arch=x86&distroversion=v3.17&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.14.1-r0%3Farch=x86&distroversion=v3.17&reponame=main
aliases CVE-2018-5743
risk_score 3.9
exploitability 0.5
weighted_severity 7.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vbk8-2s3p-mfcf
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.14.1-r0%3Farch=x86&distroversion=v3.17&reponame=main