Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:pypi/zodb3@3.9.0a4

Type pypi

Namespace

Name zodb3

Version 3.9.0a4

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 3.10.0a2

Latest_non_vulnerable_version 3.10.0a2

Affected_by_vulnerabilities

url VCID-f16t-cffn-3qbf

vulnerability_id VCID-f16t-cffn-3qbf

summary Zope Object Database (ZODB) Arbitrary files reading and deletion

references

reference_url

http://pypi.python.org/pypi/ZODB3/3.8.3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://pypi.python.org/pypi/ZODB3/3.8.3

reference_url

http://pypi.python.org/pypi/ZODB3/3.9.0c2

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://pypi.python.org/pypi/ZODB3/3.9.0c2

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2701.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2701.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2701

reference_id

reference_type

scores

value	0.00419
scoring_system	epss
scoring_elements	0.62437
published_at	2026-06-12T12:55:00Z

value	0.00419
scoring_system	epss
scoring_elements	0.62335
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2701

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/zodb3/PYSEC-2009-10.yaml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/zodb3/PYSEC-2009-10.yaml

reference_url

https://github.com/zopefoundation/ZODB3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/zopefoundation/ZODB3

reference_url

https://mail.zope.org/pipermail/zope-announce/2009-September/002221.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://mail.zope.org/pipermail/zope-announce/2009-September/002221.html

reference_url	http://www.vupen.com/english/advisories/2009/2534
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/2534

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=522392
reference_id	522392
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=522392

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2009-2701

reference_id

CVE-2009-2701

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2009-2701

reference_url

https://github.com/advisories/GHSA-m52m-2qpx-9j4j

reference_id

GHSA-m52m-2qpx-9j4j

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-m52m-2qpx-9j4j

fixed_packages

url pkg:pypi/zodb3@3.9.0rc2

purl pkg:pypi/zodb3@3.9.0rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pfbx-vahz-c7gk

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/zodb3@3.9.0rc2

url pkg:pypi/zodb3@3.9.0c2

purl pkg:pypi/zodb3@3.9.0c2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pfbx-vahz-c7gk

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/zodb3@3.9.0c2

aliases CVE-2009-2701, GHSA-m52m-2qpx-9j4j, PYSEC-2009-10

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f16t-cffn-3qbf

url VCID-pfbx-vahz-c7gk

vulnerability_id VCID-pfbx-vahz-c7gk

summary Race condition in ZEO/StorageServer.py in Zope Object Database (ZODB) before 3.10.0 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, a related issue to CVE-2010-3492.

references

reference_url

http://bugs.python.org/issue6706

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://bugs.python.org/issue6706

reference_url

http://pypi.python.org/pypi/ZODB3/3.10.0#id1

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://pypi.python.org/pypi/ZODB3/3.10.0#id1

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-3495

reference_id

reference_type

scores

value	0.01038
scoring_system	epss
scoring_elements	0.77828
published_at	2026-06-11T12:55:00Z

value	0.01038
scoring_system	epss
scoring_elements	0.77896
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-3495

reference_url

https://bugs.launchpad.net/zodb/+bug/135108

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugs.launchpad.net/zodb/+bug/135108

reference_url

http://secunia.com/advisories/41755

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/41755

reference_url	https://github.com/advisories/GHSA-j6m4-frxh-p4x8
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-j6m4-frxh-p4x8

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/zodb3/PYSEC-2010-27.yaml

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/zodb3/PYSEC-2010-27.yaml

reference_url

https://github.com/zopefoundation/ZODB/commit/cfe16277ef1b5bb094dc79da50b0df1ee1537590

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/zopefoundation/ZODB/commit/cfe16277ef1b5bb094dc79da50b0df1ee1537590

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2010-3495

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2010-3495

reference_url

https://pypi.org/project/ZODB3/3.10.0a2/#a2-2010-05-04

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://pypi.org/project/ZODB3/3.10.0a2/#a2-2010-05-04

reference_url

https://web.archive.org/web/20111225005929/http://secunia.com/advisories/41755

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20111225005929/http://secunia.com/advisories/41755

reference_url

http://www.openwall.com/lists/oss-security/2010/09/09/6

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2010/09/09/6

reference_url

http://www.openwall.com/lists/oss-security/2010/09/11/2

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2010/09/11/2

reference_url

http://www.openwall.com/lists/oss-security/2010/09/22/3

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2010/09/22/3

reference_url

http://www.openwall.com/lists/oss-security/2010/09/24/3

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2010/09/24/3

fixed_packages

url pkg:pypi/zodb3@3.10.0a1

purl pkg:pypi/zodb3@3.10.0a1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pfbx-vahz-c7gk

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/zodb3@3.10.0a1

url	pkg:pypi/zodb3@3.10.0a2
purl	pkg:pypi/zodb3@3.10.0a2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/zodb3@3.10.0a2

aliases CVE-2010-3495, GHSA-j6m4-frxh-p4x8, PYSEC-2010-27

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pfbx-vahz-c7gk

Fixing_vulnerabilities

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/zodb3@3.9.0a4

Package Instance