Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/putty@0.71-r0?arch=armhf&distroversion=v3.20&reponame=community

Type apk

Namespace alpine

Name putty

Version 0.71-r0

Qualifiers

arch	armhf
distroversion	v3.20
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version 0.73-r0

Latest_non_vulnerable_version 0.81-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-3bnv-zhkv-ebeq

vulnerability_id VCID-3bnv-zhkv-ebeq

summary Potential recycling of random numbers used in cryptography exists within PuTTY before 0.71.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-9898

reference_id

reference_type

scores

value	0.04291
scoring_system	epss
scoring_elements	0.89047
published_at	2026-06-04T12:55:00Z

value	0.04291
scoring_system	epss
scoring_elements	0.89064
published_at	2026-06-05T12:55:00Z

value	0.04291
scoring_system	epss
scoring_elements	0.89065
published_at	2026-06-08T12:55:00Z

value	0.04291
scoring_system	epss
scoring_elements	0.89082
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-9898

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9894
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9894

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9895
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9895

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9897
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9897

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9898
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9898

fixed_packages

url	pkg:apk/alpine/putty@0.71-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/putty@0.71-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/putty@0.71-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2019-9898

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3bnv-zhkv-ebeq

url VCID-8ccu-u898-9uhu

vulnerability_id VCID-8ccu-u898-9uhu

summary A remotely triggerable memory overwrite in RSA key exchange in PuTTY before 0.71 can occur before host key verification.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-9894

reference_id

reference_type

scores

value	0.00657
scoring_system	epss
scoring_elements	0.71426
published_at	2026-06-04T12:55:00Z

value	0.00657
scoring_system	epss
scoring_elements	0.7147
published_at	2026-06-05T12:55:00Z

value	0.00657
scoring_system	epss
scoring_elements	0.71476
published_at	2026-06-06T12:55:00Z

value	0.00657
scoring_system	epss
scoring_elements	0.71452
published_at	2026-06-07T12:55:00Z

value	0.00657
scoring_system	epss
scoring_elements	0.71436
published_at	2026-06-08T12:55:00Z

value	0.00657
scoring_system	epss
scoring_elements	0.71459
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-9894

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9894
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9894

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9895
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9895

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9897
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9897

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9898
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9898

fixed_packages

url	pkg:apk/alpine/putty@0.71-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/putty@0.71-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/putty@0.71-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2019-9894

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8ccu-u898-9uhu

url VCID-a16d-x4r5-j3bb

vulnerability_id VCID-a16d-x4r5-j3bb

summary Multiple denial-of-service attacks that can be triggered by writing to the terminal exist in PuTTY versions before 0.71.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-9897

reference_id

reference_type

scores

value	0.02387
scoring_system	epss
scoring_elements	0.85298
published_at	2026-06-04T12:55:00Z

value	0.02387
scoring_system	epss
scoring_elements	0.85321
published_at	2026-06-07T12:55:00Z

value	0.02387
scoring_system	epss
scoring_elements	0.85327
published_at	2026-06-06T12:55:00Z

value	0.02387
scoring_system	epss
scoring_elements	0.85306
published_at	2026-06-08T12:55:00Z

value	0.02387
scoring_system	epss
scoring_elements	0.8532
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-9897

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9894
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9894

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9895
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9895

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9897
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9897

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9898
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9898

fixed_packages

url	pkg:apk/alpine/putty@0.71-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/putty@0.71-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/putty@0.71-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2019-9897

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a16d-x4r5-j3bb

url VCID-e7e2-jgsm-9kaz

vulnerability_id VCID-e7e2-jgsm-9kaz

summary In PuTTY versions before 0.71 on Unix, a remotely triggerable buffer overflow exists in any kind of server-to-client forwarding.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-9895

reference_id

reference_type

scores

value	0.01369
scoring_system	epss
scoring_elements	0.80546
published_at	2026-06-04T12:55:00Z

value	0.01369
scoring_system	epss
scoring_elements	0.80572
published_at	2026-06-05T12:55:00Z

value	0.01369
scoring_system	epss
scoring_elements	0.80574
published_at	2026-06-06T12:55:00Z

value	0.01369
scoring_system	epss
scoring_elements	0.80571
published_at	2026-06-07T12:55:00Z

value	0.01369
scoring_system	epss
scoring_elements	0.80567
published_at	2026-06-08T12:55:00Z

value	0.01369
scoring_system	epss
scoring_elements	0.80588
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-9895

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9894
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9894

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9895
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9895

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9897
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9897

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9898
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9898

fixed_packages

url	pkg:apk/alpine/putty@0.71-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/putty@0.71-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/putty@0.71-r0%3Farch=armhf&distroversion=v3.20&reponame=community

aliases CVE-2019-9895

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e7e2-jgsm-9kaz

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/putty@0.71-r0%3Farch=armhf&distroversion=v3.20&reponame=community

Package Instance