Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/coturn@4.5.1.3-r0?arch=armhf&distroversion=v3.22&reponame=community
Typeapk
Namespacealpine
Namecoturn
Version4.5.1.3-r0
Qualifiers
arch armhf
distroversion v3.22
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version4.5.2-r0
Latest_non_vulnerable_version4.5.2-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-7dcp-tucv-7qfm
vulnerability_id VCID-7dcp-tucv-7qfm
summary In coturn before version 4.5.1.3, there is an issue whereby STUN/TURN response buffer is not initialized properly. There is a leak of information between different client connections. One client (an attacker) could use their connection to intelligently query coturn to get interesting bytes in the padding bytes from the connection of another client. This has been fixed in 4.5.1.3.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-4067
reference_id
reference_type
scores
0
value 0.00873
scoring_system epss
scoring_elements 0.75591
published_at 2026-06-04T12:55:00Z
1
value 0.00873
scoring_system epss
scoring_elements 0.7562
published_at 2026-06-05T12:55:00Z
2
value 0.00873
scoring_system epss
scoring_elements 0.75623
published_at 2026-06-06T12:55:00Z
3
value 0.00873
scoring_system epss
scoring_elements 0.75613
published_at 2026-06-07T12:55:00Z
4
value 0.00873
scoring_system epss
scoring_elements 0.756
published_at 2026-06-08T12:55:00Z
5
value 0.00873
scoring_system epss
scoring_elements 0.75625
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-4067
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4067
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4067
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6061
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6061
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6062
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6062
4
reference_url https://usn.ubuntu.com/4415-1/
reference_id USN-4415-1
reference_type
scores
url https://usn.ubuntu.com/4415-1/
fixed_packages
0
url pkg:apk/alpine/coturn@4.5.1.3-r0?arch=armhf&distroversion=v3.22&reponame=community
purl pkg:apk/alpine/coturn@4.5.1.3-r0?arch=armhf&distroversion=v3.22&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/coturn@4.5.1.3-r0%3Farch=armhf&distroversion=v3.22&reponame=community
aliases CVE-2020-4067
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7dcp-tucv-7qfm
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/coturn@4.5.1.3-r0%3Farch=armhf&distroversion=v3.22&reponame=community