Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:pypi/tripleo-heat-templates@6.2.15

Type pypi

Namespace

Name tripleo-heat-templates

Version 6.2.15

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 12.0.0

Latest_non_vulnerable_version 12.0.0

Affected_by_vulnerabilities

url VCID-cc8y-yuq6-skhj

vulnerability_id VCID-cc8y-yuq6-skhj

summary Openstack tripleo-heat-templates unauthenticated file access

references

reference_url

https://access.redhat.com/errata/RHSA-2018:0602

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2018:0602

reference_url

https://access.redhat.com/errata/RHSA-2018:1593

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2018:1593

reference_url

https://access.redhat.com/errata/RHSA-2018:1627

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2018:1627

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12155.json

reference_id

reference_type

scores

value	8.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12155.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12155

reference_id

reference_type

scores

value	0.00027
scoring_system	epss
scoring_elements	0.08088
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12155

reference_url

https://bugs.launchpad.net/tripleo/+bug/1720787

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugs.launchpad.net/tripleo/+bug/1720787

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1489360

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=1489360

reference_url

https://github.com/openstack/tripleo-heat-templates

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/openstack/tripleo-heat-templates

reference_url

https://opendev.org/openstack/tripleo-heat-templates/commit/a18fd59077d97de83496c85c017b9d256a3eddd4

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://opendev.org/openstack/tripleo-heat-templates/commit/a18fd59077d97de83496c85c017b9d256a3eddd4

reference_url

https://opendev.org/openstack/tripleo-heat-templates/commit/ce7b65f443d38a6627631f53cb22336338e97d30

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://opendev.org/openstack/tripleo-heat-templates/commit/ce7b65f443d38a6627631f53cb22336338e97d30

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-12155

reference_id

CVE-2017-12155

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2017-12155

reference_url

https://github.com/advisories/GHSA-w8gx-hhcx-px6w

reference_id

GHSA-w8gx-hhcx-px6w

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-w8gx-hhcx-px6w

fixed_packages

url pkg:pypi/tripleo-heat-templates@7.0.6

purl pkg:pypi/tripleo-heat-templates@7.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cc8y-yuq6-skhj

vulnerability	VCID-xtn8-x2x9-4ya8

vulnerability	VCID-zdf2-3ahs-7kge

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/tripleo-heat-templates@7.0.6

url pkg:pypi/tripleo-heat-templates@8.0.0.0b1

purl pkg:pypi/tripleo-heat-templates@8.0.0.0b1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xtn8-x2x9-4ya8

vulnerability	VCID-zdf2-3ahs-7kge

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/tripleo-heat-templates@8.0.0.0b1

aliases CVE-2017-12155, GHSA-w8gx-hhcx-px6w

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cc8y-yuq6-skhj

url VCID-xtn8-x2x9-4ya8

vulnerability_id VCID-xtn8-x2x9-4ya8

summary Exposure of Sensitive Information to an Unauthorized Actor in OpenStack tripleo-heat-templates

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4180.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4180.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-4180

reference_id

reference_type

scores

value	0.00167
scoring_system	epss
scoring_elements	0.37541
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-4180

reference_url

https://bugs.launchpad.net/tripleo/+bug/1955397

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugs.launchpad.net/tripleo/+bug/1955397

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=2035793

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=2035793

reference_url

https://github.com/openstack/tripleo-heat-templates

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/openstack/tripleo-heat-templates

reference_url

https://github.com/openstack/tripleo-heat-templates/commit/160936df134a471cfd245bd60964046027a571ea

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/openstack/tripleo-heat-templates/commit/160936df134a471cfd245bd60964046027a571ea

reference_url

https://github.com/openstack/tripleo-heat-templates/commit/2b9461e97fc5c4ceb0848d1cc4484f656bb85515

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/openstack/tripleo-heat-templates/commit/2b9461e97fc5c4ceb0848d1cc4484f656bb85515

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-4180

reference_id

CVE-2021-4180

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-4180

reference_url

https://github.com/advisories/GHSA-hm3x-jwwf-jpr9

reference_id

GHSA-hm3x-jwwf-jpr9

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-hm3x-jwwf-jpr9

reference_url	https://access.redhat.com/errata/RHSA-2022:0995
reference_id	RHSA-2022:0995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0995

reference_url	https://access.redhat.com/errata/RHSA-2022:8796
reference_id	RHSA-2022:8796
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8796

fixed_packages

url	pkg:pypi/tripleo-heat-templates@11.6.1
purl	pkg:pypi/tripleo-heat-templates@11.6.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/tripleo-heat-templates@11.6.1

url	pkg:pypi/tripleo-heat-templates@12.0.0
purl	pkg:pypi/tripleo-heat-templates@12.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/tripleo-heat-templates@12.0.0

aliases CVE-2021-4180, GHSA-hm3x-jwwf-jpr9

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xtn8-x2x9-4ya8

url VCID-zdf2-3ahs-7kge

vulnerability_id VCID-zdf2-3ahs-7kge

summary A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials.

references

reference_url	https://access.redhat.com/errata/RHSA-2018:2214
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2214

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10898.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10898.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-10898

reference_id

reference_type

scores

value	0.00168
scoring_system	epss
scoring_elements	0.37744
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-10898

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10898
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10898

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1600360
reference_id	1600360
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1600360

fixed_packages

url pkg:pypi/tripleo-heat-templates@8.0.3

purl pkg:pypi/tripleo-heat-templates@8.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xtn8-x2x9-4ya8

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/tripleo-heat-templates@8.0.3

aliases CVE-2018-10898, PYSEC-2018-102

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zdf2-3ahs-7kge

Fixing_vulnerabilities

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/tripleo-heat-templates@6.2.15

Package Instance