Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/libtorrent-rasterbar@1.1.1-1
Typedeb
Namespacedebian
Namelibtorrent-rasterbar
Version1.1.1-1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.1.11-2
Latest_non_vulnerable_version1.1.11-2
Affected_by_vulnerabilities
0
url VCID-dbs5-7v7j-5be7
vulnerability_id VCID-dbs5-7v7j-5be7
summary The bdecode function in bdecode.cpp in libtorrent 1.1.3 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-9847
reference_id
reference_type
scores
0
value 0.00189
scoring_system epss
scoring_elements 0.40548
published_at 2026-06-04T12:55:00Z
1
value 0.00189
scoring_system epss
scoring_elements 0.40628
published_at 2026-06-05T12:55:00Z
2
value 0.00189
scoring_system epss
scoring_elements 0.40632
published_at 2026-06-06T12:55:00Z
3
value 0.00189
scoring_system epss
scoring_elements 0.40605
published_at 2026-06-07T12:55:00Z
4
value 0.00189
scoring_system epss
scoring_elements 0.40575
published_at 2026-06-08T12:55:00Z
5
value 0.00189
scoring_system epss
scoring_elements 0.40589
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-9847
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9847
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9847
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865845
reference_id 865845
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865845
fixed_packages
0
url pkg:deb/debian/libtorrent-rasterbar@1.1.11-2
purl pkg:deb/debian/libtorrent-rasterbar@1.1.11-2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libtorrent-rasterbar@1.1.11-2
aliases CVE-2017-9847
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dbs5-7v7j-5be7
Fixing_vulnerabilities
0
url VCID-3qm5-m1gx-vuej
vulnerability_id VCID-3qm5-m1gx-vuej
summary The parse_chunk_header function in libtorrent before 1.1.1 allows remote attackers to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-5301
reference_id
reference_type
scores
0
value 0.01385
scoring_system epss
scoring_elements 0.8068
published_at 2026-06-06T12:55:00Z
1
value 0.01385
scoring_system epss
scoring_elements 0.80693
published_at 2026-06-09T12:55:00Z
2
value 0.01385
scoring_system epss
scoring_elements 0.80679
published_at 2026-06-05T12:55:00Z
3
value 0.01385
scoring_system epss
scoring_elements 0.80652
published_at 2026-06-04T12:55:00Z
4
value 0.01385
scoring_system epss
scoring_elements 0.80676
published_at 2026-06-07T12:55:00Z
5
value 0.01385
scoring_system epss
scoring_elements 0.80673
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-5301
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5301
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5301
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=826380
reference_id 826380
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=826380
4
reference_url https://usn.ubuntu.com/USN-4790-1/
reference_id USN-USN-4790-1
reference_type
scores
url https://usn.ubuntu.com/USN-4790-1/
fixed_packages
0
url pkg:deb/debian/libtorrent-rasterbar@1.1.1-1
purl pkg:deb/debian/libtorrent-rasterbar@1.1.1-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dbs5-7v7j-5be7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libtorrent-rasterbar@1.1.1-1
aliases CVE-2016-5301
risk_score 1.1
exploitability 0.5
weighted_severity 2.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3qm5-m1gx-vuej
1
url VCID-t91b-n9qf-wbdx
vulnerability_id VCID-t91b-n9qf-wbdx
summary The lazy_bdecode function in BitTorrent DHT bootstrap server (bootstrap-dht ) allows remote attackers to execute arbitrary code via a crafted packet, related to "improper indexing."
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-5685
reference_id
reference_type
scores
0
value 0.06613
scoring_system epss
scoring_elements 0.9135
published_at 2026-06-04T12:55:00Z
1
value 0.06613
scoring_system epss
scoring_elements 0.91364
published_at 2026-06-05T12:55:00Z
2
value 0.06613
scoring_system epss
scoring_elements 0.91365
published_at 2026-06-06T12:55:00Z
3
value 0.06613
scoring_system epss
scoring_elements 0.91361
published_at 2026-06-07T12:55:00Z
4
value 0.06613
scoring_system epss
scoring_elements 0.91356
published_at 2026-06-08T12:55:00Z
5
value 0.06613
scoring_system epss
scoring_elements 0.91371
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-5685
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5685
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=797046
reference_id 797046
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=797046
fixed_packages
0
url pkg:deb/debian/libtorrent-rasterbar@1.1.1-1
purl pkg:deb/debian/libtorrent-rasterbar@1.1.1-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dbs5-7v7j-5be7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libtorrent-rasterbar@1.1.1-1
aliases CVE-2015-5685
risk_score 0.1
exploitability 0.5
weighted_severity 0.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t91b-n9qf-wbdx
2
url VCID-zybn-srt4-k7be
vulnerability_id VCID-zybn-srt4-k7be
summary The construct function in puff.cpp in Libtorrent 1.1.0 allows remote torrent trackers to cause a denial of service (segmentation fault and crash) via a crafted GZIP response.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-7164
reference_id
reference_type
scores
0
value 0.00475
scoring_system epss
scoring_elements 0.65151
published_at 2026-06-04T12:55:00Z
1
value 0.00475
scoring_system epss
scoring_elements 0.65194
published_at 2026-06-05T12:55:00Z
2
value 0.00475
scoring_system epss
scoring_elements 0.65204
published_at 2026-06-06T12:55:00Z
3
value 0.00475
scoring_system epss
scoring_elements 0.65193
published_at 2026-06-07T12:55:00Z
4
value 0.00475
scoring_system epss
scoring_elements 0.65181
published_at 2026-06-08T12:55:00Z
5
value 0.00475
scoring_system epss
scoring_elements 0.652
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-7164
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7164
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7164
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837338
reference_id 837338
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837338
fixed_packages
0
url pkg:deb/debian/libtorrent-rasterbar@1.1.1-1
purl pkg:deb/debian/libtorrent-rasterbar@1.1.1-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dbs5-7v7j-5be7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libtorrent-rasterbar@1.1.1-1
aliases CVE-2016-7164
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zybn-srt4-k7be
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/libtorrent-rasterbar@1.1.1-1