Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:npm/terminal-kit@1.49.0
Typenpm
Namespace
Nameterminal-kit
Version1.49.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.1.8
Latest_non_vulnerable_version2.1.8
Affected_by_vulnerabilities
0
url VCID-b3xj-sjb7-5kfs
vulnerability_id VCID-b3xj-sjb7-5kfs
summary 
terminal-kit Inefficient Regular Expression Complexity vulnerability
A vulnerability classified as problematic has been found in cronvel terminal-kit up to 2.1.7. Affected is an unknown function. The manipulation leads to inefficient regular expression complexity. Upgrading to version 2.1.8 can address this issue. The name of the patch is a2e446cc3927b559d0281683feb9b821e83b758c. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-217620.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-4306
reference_id
reference_type
scores
0
value 0.00492
scoring_system epss
scoring_elements 0.66034
published_at 2026-06-05T12:55:00Z
1
value 0.00492
scoring_system epss
scoring_elements 0.66037
published_at 2026-06-09T12:55:00Z
2
value 0.00492
scoring_system epss
scoring_elements 0.66019
published_at 2026-06-08T12:55:00Z
3
value 0.00492
scoring_system epss
scoring_elements 0.66031
published_at 2026-06-07T12:55:00Z
4
value 0.00492
scoring_system epss
scoring_elements 0.66046
published_at 2026-06-06T12:55:00Z
5
value 0.00492
scoring_system epss
scoring_elements 0.65982
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-4306
1
reference_url https://github.com/cronvel/terminal-kit
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/cronvel/terminal-kit
2
reference_url https://github.com/cronvel/terminal-kit/commit/a2e446cc3927b559d0281683feb9b821e83b758c
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/cronvel/terminal-kit/commit/a2e446cc3927b559d0281683feb9b821e83b758c
3
reference_url https://github.com/cronvel/terminal-kit/releases/tag/v2.1.8
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/cronvel/terminal-kit/releases/tag/v2.1.8
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-4306
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-4306
5
reference_url https://vuldb.com/?ctiid.217620
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://vuldb.com/?ctiid.217620
6
reference_url https://vuldb.com/?id.217620
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://vuldb.com/?id.217620
7
reference_url https://github.com/advisories/GHSA-wxgh-8gmr-3qh3
reference_id GHSA-wxgh-8gmr-3qh3
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wxgh-8gmr-3qh3
fixed_packages
0
url pkg:npm/terminal-kit@2.1.8
purl pkg:npm/terminal-kit@2.1.8
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/terminal-kit@2.1.8
aliases CVE-2021-4306, GHSA-wxgh-8gmr-3qh3
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b3xj-sjb7-5kfs
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:npm/terminal-kit@1.49.0