Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/org.apache.plc4x/plc4c@0.3.1

Type maven

Namespace org.apache.plc4x

Name plc4c

Version 0.3.1

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 0.13.0

Latest_non_vulnerable_version 0.13.0

Affected_by_vulnerabilities

url VCID-2bsx-x4az-dban

vulnerability_id VCID-2bsx-x4az-dban

summary

Integer Underflow (Wrap or Wraparound)
Apache PLC4X - PLC4C (Only the C language implementation was effected) was vulnerable to an unsigned integer underflow flaw inside the tcp transport. Users should update to, which addresses this issue. However, in order to exploit this vulnerability, a user would have to actively connect to a mallicious device which could send a response with invalid content. Currently we consider the probability of this being exploited as quite minimal, however this could change in the future, especially with the industrial networks growing more and more together.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-43083

reference_id

reference_type

scores

value	0.01535
scoring_system	epss
scoring_elements	0.8166
published_at	2026-06-04T12:55:00Z

value	0.01535
scoring_system	epss
scoring_elements	0.81691
published_at	2026-06-06T12:55:00Z

value	0.01535
scoring_system	epss
scoring_elements	0.81692
published_at	2026-06-07T12:55:00Z

value	0.01535
scoring_system	epss
scoring_elements	0.81685
published_at	2026-06-08T12:55:00Z

value	0.01535
scoring_system	epss
scoring_elements	0.817
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-43083

reference_url	https://lists.apache.org/thread/jxx6qc84z60xbbhn6vp2s5qf09psrtc7
reference_id
reference_type
scores
url	https://lists.apache.org/thread/jxx6qc84z60xbbhn6vp2s5qf09psrtc7

reference_url	http://www.openwall.com/lists/oss-security/2021/12/20/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2021/12/20/2

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2021-43083
reference_id	CVE-2021-43083
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2021-43083

fixed_packages

url	pkg:maven/org.apache.plc4x/plc4c@0.9.1
purl	pkg:maven/org.apache.plc4x/plc4c@0.9.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.plc4x/plc4c@0.9.1

url	pkg:maven/org.apache.plc4x/plc4c@0.13.0
purl	pkg:maven/org.apache.plc4x/plc4c@0.13.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.plc4x/plc4c@0.13.0

aliases CVE-2021-43083

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2bsx-x4az-dban

Fixing_vulnerabilities

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.plc4x/plc4c@0.3.1

Package Instance