Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/libmediainfo@18.12-2
Typedeb
Namespacedebian
Namelibmediainfo
Version18.12-2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version20.09+dfsg-2
Latest_non_vulnerable_version20.09+dfsg-2
Affected_by_vulnerabilities
0
url VCID-akmn-69gy-xbfq
vulnerability_id VCID-akmn-69gy-xbfq
summary Mediainfo before version 20.08 has a heap buffer overflow vulnerability via MediaInfoLib::File_Gxf::ChooseParser_ChannelGrouping.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-26797
reference_id
reference_type
scores
0
value 0.00663
scoring_system epss
scoring_elements 0.71559
published_at 2026-06-04T12:55:00Z
1
value 0.00663
scoring_system epss
scoring_elements 0.71603
published_at 2026-06-05T12:55:00Z
2
value 0.00663
scoring_system epss
scoring_elements 0.7161
published_at 2026-06-06T12:55:00Z
3
value 0.00663
scoring_system epss
scoring_elements 0.71585
published_at 2026-06-07T12:55:00Z
4
value 0.00663
scoring_system epss
scoring_elements 0.7157
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-26797
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26797
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26797
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985554
reference_id 985554
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985554
3
reference_url https://security.archlinux.org/AVG-1706
reference_id AVG-1706
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1706
4
reference_url https://usn.ubuntu.com/USN-5237-1/
reference_id USN-USN-5237-1
reference_type
scores
url https://usn.ubuntu.com/USN-5237-1/
fixed_packages
0
url pkg:deb/debian/libmediainfo@20.09%2Bdfsg-2
purl pkg:deb/debian/libmediainfo@20.09%2Bdfsg-2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libmediainfo@20.09%252Bdfsg-2
aliases CVE-2020-26797
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-akmn-69gy-xbfq
1
url VCID-f82p-za1e-ubh1
vulnerability_id VCID-f82p-za1e-ubh1
summary In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an off-by-one during MpegPs parsing).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-15395
reference_id
reference_type
scores
0
value 0.00466
scoring_system epss
scoring_elements 0.64746
published_at 2026-06-04T12:55:00Z
1
value 0.00466
scoring_system epss
scoring_elements 0.64788
published_at 2026-06-05T12:55:00Z
2
value 0.00466
scoring_system epss
scoring_elements 0.64798
published_at 2026-06-06T12:55:00Z
3
value 0.00466
scoring_system epss
scoring_elements 0.64787
published_at 2026-06-07T12:55:00Z
4
value 0.00466
scoring_system epss
scoring_elements 0.64776
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-15395
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15395
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15395
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=967073
reference_id 967073
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=967073
3
reference_url https://usn.ubuntu.com/USN-5237-1/
reference_id USN-USN-5237-1
reference_type
scores
url https://usn.ubuntu.com/USN-5237-1/
fixed_packages
0
url pkg:deb/debian/libmediainfo@20.09%2Bdfsg-2
purl pkg:deb/debian/libmediainfo@20.09%2Bdfsg-2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libmediainfo@20.09%252Bdfsg-2
aliases CVE-2020-15395
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f82p-za1e-ubh1
Fixing_vulnerabilities
0
url VCID-hveg-djzx-hkfh
vulnerability_id VCID-hveg-djzx-hkfh
summary An out-of-bounds read in MediaInfoLib::File__Tags_Helper::Synched_Test in Tag/File__Tags.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-11372
reference_id
reference_type
scores
0
value 0.02723
scoring_system epss
scoring_elements 0.86214
published_at 2026-06-04T12:55:00Z
1
value 0.02723
scoring_system epss
scoring_elements 0.86235
published_at 2026-06-05T12:55:00Z
2
value 0.02723
scoring_system epss
scoring_elements 0.86238
published_at 2026-06-06T12:55:00Z
3
value 0.02723
scoring_system epss
scoring_elements 0.86234
published_at 2026-06-07T12:55:00Z
4
value 0.02723
scoring_system epss
scoring_elements 0.86222
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-11372
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11372
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11372
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927672
reference_id 927672
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927672
3
reference_url https://usn.ubuntu.com/3988-1/
reference_id USN-3988-1
reference_type
scores
url https://usn.ubuntu.com/3988-1/
4
reference_url https://usn.ubuntu.com/USN-4859-1/
reference_id USN-USN-4859-1
reference_type
scores
url https://usn.ubuntu.com/USN-4859-1/
fixed_packages
0
url pkg:deb/debian/libmediainfo@18.12-2
purl pkg:deb/debian/libmediainfo@18.12-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-akmn-69gy-xbfq
1
vulnerability VCID-f82p-za1e-ubh1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libmediainfo@18.12-2
aliases CVE-2019-11372
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hveg-djzx-hkfh
1
url VCID-vp9b-82g8-3uc8
vulnerability_id VCID-vp9b-82g8-3uc8
summary An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-11373
reference_id
reference_type
scores
0
value 0.02723
scoring_system epss
scoring_elements 0.86214
published_at 2026-06-04T12:55:00Z
1
value 0.02723
scoring_system epss
scoring_elements 0.86235
published_at 2026-06-05T12:55:00Z
2
value 0.02723
scoring_system epss
scoring_elements 0.86238
published_at 2026-06-06T12:55:00Z
3
value 0.02723
scoring_system epss
scoring_elements 0.86234
published_at 2026-06-07T12:55:00Z
4
value 0.02723
scoring_system epss
scoring_elements 0.86222
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-11373
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11373
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11373
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927672
reference_id 927672
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927672
3
reference_url https://usn.ubuntu.com/3988-1/
reference_id USN-3988-1
reference_type
scores
url https://usn.ubuntu.com/3988-1/
4
reference_url https://usn.ubuntu.com/USN-4859-1/
reference_id USN-USN-4859-1
reference_type
scores
url https://usn.ubuntu.com/USN-4859-1/
fixed_packages
0
url pkg:deb/debian/libmediainfo@18.12-2
purl pkg:deb/debian/libmediainfo@18.12-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-akmn-69gy-xbfq
1
vulnerability VCID-f82p-za1e-ubh1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libmediainfo@18.12-2
aliases CVE-2019-11373
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vp9b-82g8-3uc8
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/libmediainfo@18.12-2