Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/dotnet9-runtime@9.0.1-r0?arch=x86_64&distroversion=v3.21&reponame=community
Typeapk
Namespacealpine
Namedotnet9-runtime
Version9.0.1-r0
Qualifiers
arch x86_64
distroversion v3.21
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version9.0.3-r0
Latest_non_vulnerable_version9.0.16-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-4b7g-65ff-4qbg
vulnerability_id VCID-4b7g-65ff-4qbg
summary dotnet: .NET Elevation of Privilege Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21173.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21173.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-21173
reference_id
reference_type
scores
0
value 0.02034
scoring_system epss
scoring_elements 0.84149
published_at 2026-06-09T12:55:00Z
1
value 0.02034
scoring_system epss
scoring_elements 0.84148
published_at 2026-06-07T12:55:00Z
2
value 0.02034
scoring_system epss
scoring_elements 0.84136
published_at 2026-06-08T12:55:00Z
3
value 0.02034
scoring_system epss
scoring_elements 0.8415
published_at 2026-06-05T12:55:00Z
4
value 0.02034
scoring_system epss
scoring_elements 0.84153
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-21173
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2337893
reference_id 2337893
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2337893
3
reference_url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21173
reference_id CVE-2025-21173
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-15T19:17:43Z/
url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21173
4
reference_url https://access.redhat.com/errata/RHSA-2025:0382
reference_id RHSA-2025:0382
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0382
5
reference_url https://access.redhat.com/errata/RHSA-2025:0532
reference_id RHSA-2025:0532
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0532
6
reference_url https://usn.ubuntu.com/7210-1/
reference_id USN-7210-1
reference_type
scores
url https://usn.ubuntu.com/7210-1/
fixed_packages
0
url pkg:apk/alpine/dotnet9-runtime@9.0.1-r0?arch=x86_64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/dotnet9-runtime@9.0.1-r0?arch=x86_64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dotnet9-runtime@9.0.1-r0%3Farch=x86_64&distroversion=v3.21&reponame=community
aliases CVE-2025-21173
risk_score 3.3
exploitability 0.5
weighted_severity 6.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4b7g-65ff-4qbg
1
url VCID-nffm-zutt-kkam
vulnerability_id VCID-nffm-zutt-kkam
summary 
Microsoft Security Advisory CVE-2025-21172 | .NET and Visual Studio Remote Code Execution Vulnerability
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 8.0 and .NET 9.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.

An attacker could exploit this vulnerability by loading a specially crafted file in Visual Studio.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21172.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21172.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-21172
reference_id
reference_type
scores
0
value 0.00586
scoring_system epss
scoring_elements 0.69504
published_at 2026-06-09T12:55:00Z
1
value 0.00586
scoring_system epss
scoring_elements 0.69506
published_at 2026-06-06T12:55:00Z
2
value 0.00586
scoring_system epss
scoring_elements 0.69496
published_at 2026-06-07T12:55:00Z
3
value 0.00586
scoring_system epss
scoring_elements 0.69498
published_at 2026-06-05T12:55:00Z
4
value 0.00586
scoring_system epss
scoring_elements 0.69484
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-21172
2
reference_url https://github.com/dotnet/runtime
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2337927
reference_id 2337927
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2337927
4
reference_url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21172
reference_id CVE-2025-21172
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-28T04:55:37Z/
url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21172
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-21172
reference_id CVE-2025-21172
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-21172
6
reference_url https://www.herodevs.com/vulnerability-directory/cve-2025-21172
reference_id CVE-2025-21172
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.herodevs.com/vulnerability-directory/cve-2025-21172
7
reference_url https://github.com/advisories/GHSA-jjcv-wr2g-4rv4
reference_id GHSA-jjcv-wr2g-4rv4
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-jjcv-wr2g-4rv4
8
reference_url https://github.com/dotnet/runtime/security/advisories/GHSA-jjcv-wr2g-4rv4
reference_id GHSA-jjcv-wr2g-4rv4
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime/security/advisories/GHSA-jjcv-wr2g-4rv4
9
reference_url https://access.redhat.com/errata/RHSA-2025:0382
reference_id RHSA-2025:0382
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0382
10
reference_url https://access.redhat.com/errata/RHSA-2025:0532
reference_id RHSA-2025:0532
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0532
11
reference_url https://usn.ubuntu.com/7210-1/
reference_id USN-7210-1
reference_type
scores
url https://usn.ubuntu.com/7210-1/
fixed_packages
0
url pkg:apk/alpine/dotnet9-runtime@9.0.1-r0?arch=x86_64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/dotnet9-runtime@9.0.1-r0?arch=x86_64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dotnet9-runtime@9.0.1-r0%3Farch=x86_64&distroversion=v3.21&reponame=community
aliases CVE-2025-21172, GHSA-jjcv-wr2g-4rv4
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nffm-zutt-kkam
2
url VCID-nv4e-nk5x-k3d6
vulnerability_id VCID-nv4e-nk5x-k3d6
summary 
Microsoft Security Advisory CVE-2025-21176 | .NET and Visual Studio Remote Code Execution Vulnerability
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 8.0 and .NET 9.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.

An attacker could exploit this vulnerability by loading a specially crafted file in Visual Studio.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21176.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21176.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-21176
reference_id
reference_type
scores
0
value 0.0194
scoring_system epss
scoring_elements 0.8378
published_at 2026-06-09T12:55:00Z
1
value 0.0194
scoring_system epss
scoring_elements 0.83779
published_at 2026-06-06T12:55:00Z
2
value 0.0194
scoring_system epss
scoring_elements 0.83775
published_at 2026-06-07T12:55:00Z
3
value 0.0194
scoring_system epss
scoring_elements 0.83778
published_at 2026-06-05T12:55:00Z
4
value 0.0194
scoring_system epss
scoring_elements 0.83766
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-21176
2
reference_url https://github.com/dotnet/runtime
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2337926
reference_id 2337926
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2337926
4
reference_url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21176
reference_id CVE-2025-21176
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-28T04:55:35Z/
url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21176
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-21176
reference_id CVE-2025-21176
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-21176
6
reference_url https://www.herodevs.com/vulnerability-directory/cve-2025-21176
reference_id CVE-2025-21176
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.herodevs.com/vulnerability-directory/cve-2025-21176
7
reference_url https://github.com/advisories/GHSA-gjf6-3w4p-7xfh
reference_id GHSA-gjf6-3w4p-7xfh
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-gjf6-3w4p-7xfh
8
reference_url https://github.com/dotnet/runtime/security/advisories/GHSA-gjf6-3w4p-7xfh
reference_id GHSA-gjf6-3w4p-7xfh
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime/security/advisories/GHSA-gjf6-3w4p-7xfh
9
reference_url https://access.redhat.com/errata/RHSA-2025:0382
reference_id RHSA-2025:0382
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0382
10
reference_url https://access.redhat.com/errata/RHSA-2025:0532
reference_id RHSA-2025:0532
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0532
11
reference_url https://usn.ubuntu.com/7210-1/
reference_id USN-7210-1
reference_type
scores
url https://usn.ubuntu.com/7210-1/
fixed_packages
0
url pkg:apk/alpine/dotnet9-runtime@9.0.1-r0?arch=x86_64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/dotnet9-runtime@9.0.1-r0?arch=x86_64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dotnet9-runtime@9.0.1-r0%3Farch=x86_64&distroversion=v3.21&reponame=community
aliases CVE-2025-21176, GHSA-gjf6-3w4p-7xfh
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nv4e-nk5x-k3d6
3
url VCID-v67n-bu3s-u3cr
vulnerability_id VCID-v67n-bu3s-u3cr
summary 
Microsoft Security Advisory CVE-2025-21171 | .NET Remote Code Execution Vulnerability
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 9.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.

An attacker could exploit this vulnerability by sending a specially crafted request to the vulnerable web server.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21171.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21171.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-21171
reference_id
reference_type
scores
0
value 0.0082
scoring_system epss
scoring_elements 0.74773
published_at 2026-06-09T12:55:00Z
1
value 0.0082
scoring_system epss
scoring_elements 0.74775
published_at 2026-06-06T12:55:00Z
2
value 0.0082
scoring_system epss
scoring_elements 0.74763
published_at 2026-06-07T12:55:00Z
3
value 0.0082
scoring_system epss
scoring_elements 0.74769
published_at 2026-06-05T12:55:00Z
4
value 0.0082
scoring_system epss
scoring_elements 0.74747
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-21171
2
reference_url https://github.com/dotnet/runtime
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2337958
reference_id 2337958
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2337958
4
reference_url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21171
reference_id CVE-2025-21171
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-28T04:55:38Z/
url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21171
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-21171
reference_id CVE-2025-21171
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-21171
6
reference_url https://github.com/advisories/GHSA-p54p-p3qm-8vgj
reference_id GHSA-p54p-p3qm-8vgj
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-p54p-p3qm-8vgj
7
reference_url https://github.com/dotnet/runtime/security/advisories/GHSA-p54p-p3qm-8vgj
reference_id GHSA-p54p-p3qm-8vgj
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime/security/advisories/GHSA-p54p-p3qm-8vgj
8
reference_url https://access.redhat.com/errata/RHSA-2025:0382
reference_id RHSA-2025:0382
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0382
9
reference_url https://usn.ubuntu.com/7210-1/
reference_id USN-7210-1
reference_type
scores
url https://usn.ubuntu.com/7210-1/
fixed_packages
0
url pkg:apk/alpine/dotnet9-runtime@9.0.1-r0?arch=x86_64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/dotnet9-runtime@9.0.1-r0?arch=x86_64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dotnet9-runtime@9.0.1-r0%3Farch=x86_64&distroversion=v3.21&reponame=community
aliases CVE-2025-21171, GHSA-p54p-p3qm-8vgj
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v67n-bu3s-u3cr
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/dotnet9-runtime@9.0.1-r0%3Farch=x86_64&distroversion=v3.21&reponame=community