Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/libxml2@2.13.6-r0?arch=riscv64&distroversion=v3.23&reponame=main
Typeapk
Namespacealpine
Namelibxml2
Version2.13.6-r0
Qualifiers
arch riscv64
distroversion v3.23
reponame main
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2.13.8-r0
Latest_non_vulnerable_version2.13.9-r1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-jwft-4pxx-5ydg
vulnerability_id VCID-jwft-4pxx-5ydg
summary libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-24928.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-24928.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-24928
reference_id
reference_type
scores
0
value 0.00235
scoring_system epss
scoring_elements 0.46517
published_at 2026-06-09T12:55:00Z
1
value 0.00235
scoring_system epss
scoring_elements 0.46552
published_at 2026-06-06T12:55:00Z
2
value 0.00235
scoring_system epss
scoring_elements 0.46532
published_at 2026-06-07T12:55:00Z
3
value 0.00235
scoring_system epss
scoring_elements 0.46506
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-24928
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24928
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24928
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098321
reference_id 1098321
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098321
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2346421
reference_id 2346421
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2346421
6
reference_url https://issues.oss-fuzz.com/issues/392687022
reference_id 392687022
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T03:55:31Z/
url https://issues.oss-fuzz.com/issues/392687022
7
reference_url https://gitlab.gnome.org/GNOME/libxml2/-/issues/847
reference_id 847
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T03:55:31Z/
url https://gitlab.gnome.org/GNOME/libxml2/-/issues/847
8
reference_url https://access.redhat.com/errata/RHSA-2025:2482
reference_id RHSA-2025:2482
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2482
9
reference_url https://access.redhat.com/errata/RHSA-2025:2483
reference_id RHSA-2025:2483
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2483
10
reference_url https://access.redhat.com/errata/RHSA-2025:2507
reference_id RHSA-2025:2507
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2507
11
reference_url https://access.redhat.com/errata/RHSA-2025:2513
reference_id RHSA-2025:2513
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2513
12
reference_url https://access.redhat.com/errata/RHSA-2025:2654
reference_id RHSA-2025:2654
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2654
13
reference_url https://access.redhat.com/errata/RHSA-2025:2660
reference_id RHSA-2025:2660
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2660
14
reference_url https://access.redhat.com/errata/RHSA-2025:2673
reference_id RHSA-2025:2673
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2673
15
reference_url https://access.redhat.com/errata/RHSA-2025:2678
reference_id RHSA-2025:2678
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2678
16
reference_url https://access.redhat.com/errata/RHSA-2025:2679
reference_id RHSA-2025:2679
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2679
17
reference_url https://access.redhat.com/errata/RHSA-2025:2686
reference_id RHSA-2025:2686
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2686
18
reference_url https://access.redhat.com/errata/RHSA-2025:2789
reference_id RHSA-2025:2789
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2789
19
reference_url https://access.redhat.com/errata/RHSA-2025:3055
reference_id RHSA-2025:3055
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3055
20
reference_url https://access.redhat.com/errata/RHSA-2025:3297
reference_id RHSA-2025:3297
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3297
21
reference_url https://access.redhat.com/errata/RHSA-2025:3368
reference_id RHSA-2025:3368
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3368
22
reference_url https://access.redhat.com/errata/RHSA-2025:3397
reference_id RHSA-2025:3397
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3397
23
reference_url https://access.redhat.com/errata/RHSA-2025:3453
reference_id RHSA-2025:3453
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3453
24
reference_url https://access.redhat.com/errata/RHSA-2025:3569
reference_id RHSA-2025:3569
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3569
25
reference_url https://access.redhat.com/errata/RHSA-2025:3775
reference_id RHSA-2025:3775
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3775
26
reference_url https://access.redhat.com/errata/RHSA-2025:3780
reference_id RHSA-2025:3780
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3780
27
reference_url https://access.redhat.com/errata/RHSA-2025:3867
reference_id RHSA-2025:3867
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3867
28
reference_url https://access.redhat.com/errata/RHSA-2025:4005
reference_id RHSA-2025:4005
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:4005
29
reference_url https://access.redhat.com/errata/RHSA-2025:9895
reference_id RHSA-2025:9895
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9895
30
reference_url https://usn.ubuntu.com/7302-1/
reference_id USN-7302-1
reference_type
scores
url https://usn.ubuntu.com/7302-1/
fixed_packages
0
url pkg:apk/alpine/libxml2@2.13.6-r0?arch=riscv64&distroversion=v3.23&reponame=main
purl pkg:apk/alpine/libxml2@2.13.6-r0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libxml2@2.13.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=main
aliases CVE-2025-24928
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jwft-4pxx-5ydg
1
url VCID-up1g-mjyj-pub4
vulnerability_id VCID-up1g-mjyj-pub4
summary libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56171.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56171.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-56171
reference_id
reference_type
scores
0
value 0.00183
scoring_system epss
scoring_elements 0.39792
published_at 2026-06-09T12:55:00Z
1
value 0.00183
scoring_system epss
scoring_elements 0.39828
published_at 2026-06-06T12:55:00Z
2
value 0.00183
scoring_system epss
scoring_elements 0.39802
published_at 2026-06-07T12:55:00Z
3
value 0.00183
scoring_system epss
scoring_elements 0.39775
published_at 2026-06-08T12:55:00Z
4
value 0.00183
scoring_system epss
scoring_elements 0.39825
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-56171
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56171
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56171
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098320
reference_id 1098320
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098320
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2346416
reference_id 2346416
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2346416
6
reference_url https://gitlab.gnome.org/GNOME/libxml2/-/issues/828
reference_id 828
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-19T16:26:31Z/
url https://gitlab.gnome.org/GNOME/libxml2/-/issues/828
7
reference_url https://access.redhat.com/errata/RHSA-2025:2482
reference_id RHSA-2025:2482
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2482
8
reference_url https://access.redhat.com/errata/RHSA-2025:2483
reference_id RHSA-2025:2483
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2483
9
reference_url https://access.redhat.com/errata/RHSA-2025:2507
reference_id RHSA-2025:2507
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2507
10
reference_url https://access.redhat.com/errata/RHSA-2025:2513
reference_id RHSA-2025:2513
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2513
11
reference_url https://access.redhat.com/errata/RHSA-2025:2654
reference_id RHSA-2025:2654
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2654
12
reference_url https://access.redhat.com/errata/RHSA-2025:2660
reference_id RHSA-2025:2660
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2660
13
reference_url https://access.redhat.com/errata/RHSA-2025:2673
reference_id RHSA-2025:2673
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2673
14
reference_url https://access.redhat.com/errata/RHSA-2025:2678
reference_id RHSA-2025:2678
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2678
15
reference_url https://access.redhat.com/errata/RHSA-2025:2679
reference_id RHSA-2025:2679
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2679
16
reference_url https://access.redhat.com/errata/RHSA-2025:2686
reference_id RHSA-2025:2686
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2686
17
reference_url https://access.redhat.com/errata/RHSA-2025:2789
reference_id RHSA-2025:2789
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2789
18
reference_url https://access.redhat.com/errata/RHSA-2025:3055
reference_id RHSA-2025:3055
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3055
19
reference_url https://access.redhat.com/errata/RHSA-2025:3059
reference_id RHSA-2025:3059
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3059
20
reference_url https://access.redhat.com/errata/RHSA-2025:3066
reference_id RHSA-2025:3066
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3066
21
reference_url https://access.redhat.com/errata/RHSA-2025:3368
reference_id RHSA-2025:3368
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3368
22
reference_url https://access.redhat.com/errata/RHSA-2025:3397
reference_id RHSA-2025:3397
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3397
23
reference_url https://access.redhat.com/errata/RHSA-2025:3453
reference_id RHSA-2025:3453
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3453
24
reference_url https://access.redhat.com/errata/RHSA-2025:3569
reference_id RHSA-2025:3569
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3569
25
reference_url https://access.redhat.com/errata/RHSA-2025:3867
reference_id RHSA-2025:3867
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3867
26
reference_url https://access.redhat.com/errata/RHSA-2025:4005
reference_id RHSA-2025:4005
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:4005
27
reference_url https://access.redhat.com/errata/RHSA-2025:9895
reference_id RHSA-2025:9895
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9895
28
reference_url https://usn.ubuntu.com/7302-1/
reference_id USN-7302-1
reference_type
scores
url https://usn.ubuntu.com/7302-1/
fixed_packages
0
url pkg:apk/alpine/libxml2@2.13.6-r0?arch=riscv64&distroversion=v3.23&reponame=main
purl pkg:apk/alpine/libxml2@2.13.6-r0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libxml2@2.13.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=main
aliases CVE-2024-56171
risk_score 3.6
exploitability 0.5
weighted_severity 7.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-up1g-mjyj-pub4
2
url VCID-vfxe-t79s-3qbb
vulnerability_id VCID-vfxe-t79s-3qbb
summary libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27113.json
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27113.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-27113
reference_id
reference_type
scores
0
value 0.00094
scoring_system epss
scoring_elements 0.26147
published_at 2026-06-09T12:55:00Z
1
value 0.00094
scoring_system epss
scoring_elements 0.26243
published_at 2026-06-06T12:55:00Z
2
value 0.00094
scoring_system epss
scoring_elements 0.26197
published_at 2026-06-07T12:55:00Z
3
value 0.00094
scoring_system epss
scoring_elements 0.26141
published_at 2026-06-08T12:55:00Z
4
value 0.00094
scoring_system epss
scoring_elements 0.2625
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-27113
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27113
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27113
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098322
reference_id 1098322
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098322
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2346410
reference_id 2346410
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2346410
6
reference_url https://gitlab.gnome.org/GNOME/libxml2/-/issues/861
reference_id 861
reference_type
scores
0
value 2.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-19T15:33:43Z/
url https://gitlab.gnome.org/GNOME/libxml2/-/issues/861
7
reference_url https://usn.ubuntu.com/7302-1/
reference_id USN-7302-1
reference_type
scores
url https://usn.ubuntu.com/7302-1/
fixed_packages
0
url pkg:apk/alpine/libxml2@2.13.6-r0?arch=riscv64&distroversion=v3.23&reponame=main
purl pkg:apk/alpine/libxml2@2.13.6-r0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libxml2@2.13.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=main
aliases CVE-2025-27113
risk_score 1.4
exploitability 0.5
weighted_severity 2.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vfxe-t79s-3qbb
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/libxml2@2.13.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=main