Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:npm/selenium-binaries@0.11.0
Typenpm
Namespace
Nameselenium-binaries
Version0.11.0
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version0.15.0
Latest_non_vulnerable_version0.15.0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-89pg-y7kx-7fgx
vulnerability_id VCID-89pg-y7kx-7fgx
summary 
Cryptographic Issues
selenium-binaries downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-10589
reference_id
reference_type
scores
0
value 0.00735
scoring_system epss
scoring_elements 0.73206
published_at 2026-06-05T12:55:00Z
1
value 0.00735
scoring_system epss
scoring_elements 0.73212
published_at 2026-06-06T12:55:00Z
2
value 0.00735
scoring_system epss
scoring_elements 0.73168
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-10589
1
reference_url https://github.com/spunjs/selenium-binaries
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/spunjs/selenium-binaries
2
reference_url https://github.com/spunjs/selenium-binaries/commit/be37e82a3c43a4f1679d66cf9467085ec9994c47
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/spunjs/selenium-binaries/commit/be37e82a3c43a4f1679d66cf9467085ec9994c47
3
reference_url https://github.com/spunjs/selenium-binaries/pull/33
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/spunjs/selenium-binaries/pull/33
4
reference_url https://www.huntr.dev/bounties/1-npm-selenium-binaries
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.huntr.dev/bounties/1-npm-selenium-binaries
5
reference_url https://www.huntr.dev/bounties/1-npm-selenium-binaries/
reference_id
reference_type
scores
url https://www.huntr.dev/bounties/1-npm-selenium-binaries/
6
reference_url https://www.npmjs.com/advisories/175
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.npmjs.com/advisories/175
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-10589
reference_id CVE-2016-10589
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-10589
8
reference_url https://github.com/advisories/GHSA-h4mc-r4f4-hcf4
reference_id GHSA-h4mc-r4f4-hcf4
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-h4mc-r4f4-hcf4
fixed_packages
0
url pkg:npm/selenium-binaries@0.11.0
purl pkg:npm/selenium-binaries@0.11.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/selenium-binaries@0.11.0
1
url pkg:npm/selenium-binaries@0.15.0
purl pkg:npm/selenium-binaries@0.15.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/selenium-binaries@0.15.0
aliases CVE-2016-10589, GHSA-h4mc-r4f4-hcf4
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-89pg-y7kx-7fgx
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:npm/selenium-binaries@0.11.0