Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/asterisk@16.5.1-r0?arch=x86_64&distroversion=v3.13&reponame=main
Typeapk
Namespacealpine
Nameasterisk
Version16.5.1-r0
Qualifiers
arch x86_64
distroversion v3.13
reponame main
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version16.6.2-r0
Latest_non_vulnerable_version18.2.1-r2
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-srx8-r9kf-gub1
vulnerability_id VCID-srx8-r9kf-gub1
summary main/translate.c in Sangoma Asterisk 13.28.0 and 16.5.0 allows a remote attacker to send a specific RTP packet during a call and cause a crash in a specific scenario.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-15639
reference_id
reference_type
scores
0
value 0.06064
scoring_system epss
scoring_elements 0.909
published_at 2026-06-04T12:55:00Z
1
value 0.06064
scoring_system epss
scoring_elements 0.90915
published_at 2026-06-05T12:55:00Z
2
value 0.06064
scoring_system epss
scoring_elements 0.90914
published_at 2026-06-06T12:55:00Z
3
value 0.06064
scoring_system epss
scoring_elements 0.90911
published_at 2026-06-07T12:55:00Z
4
value 0.06064
scoring_system epss
scoring_elements 0.90908
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-15639
fixed_packages
0
url pkg:apk/alpine/asterisk@16.5.1-r0?arch=x86_64&distroversion=v3.13&reponame=main
purl pkg:apk/alpine/asterisk@16.5.1-r0?arch=x86_64&distroversion=v3.13&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/asterisk@16.5.1-r0%3Farch=x86_64&distroversion=v3.13&reponame=main
aliases CVE-2019-15639
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-srx8-r9kf-gub1
1
url VCID-uhwr-b373-a3bz
vulnerability_id VCID-uhwr-b373-a3bz
summary res_pjsip_t38 in Sangoma Asterisk 15.x before 15.7.4 and 16.x before 16.5.1 allows an attacker to trigger a crash by sending a declined stream in a response to a T.38 re-invite initiated by Asterisk. The crash occurs because of a NULL session media object dereference.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-15297
reference_id
reference_type
scores
0
value 0.02861
scoring_system epss
scoring_elements 0.8652
published_at 2026-06-04T12:55:00Z
1
value 0.02861
scoring_system epss
scoring_elements 0.86542
published_at 2026-06-05T12:55:00Z
2
value 0.02861
scoring_system epss
scoring_elements 0.86543
published_at 2026-06-06T12:55:00Z
3
value 0.02861
scoring_system epss
scoring_elements 0.86538
published_at 2026-06-07T12:55:00Z
4
value 0.02861
scoring_system epss
scoring_elements 0.86527
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-15297
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15297
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15297
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=940060
reference_id 940060
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=940060
fixed_packages
0
url pkg:apk/alpine/asterisk@16.5.1-r0?arch=x86_64&distroversion=v3.13&reponame=main
purl pkg:apk/alpine/asterisk@16.5.1-r0?arch=x86_64&distroversion=v3.13&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/asterisk@16.5.1-r0%3Farch=x86_64&distroversion=v3.13&reponame=main
aliases CVE-2019-15297
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uhwr-b373-a3bz
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/asterisk@16.5.1-r0%3Farch=x86_64&distroversion=v3.13&reponame=main