Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@6.0.0
Typenuget
Namespace
NameMicrosoft.WindowsDesktop.App.Runtime.win-x64
Version6.0.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version6.0.18
Latest_non_vulnerable_version8.0.4
Affected_by_vulnerabilities
0
url VCID-1rea-gajy-ffhw
vulnerability_id VCID-1rea-gajy-ffhw
summary 
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
references
0
reference_url https://github.com/dotnet/announcements/issues/261
reference_id
reference_type
scores
url https://github.com/dotnet/announcements/issues/261
1
reference_url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24895
reference_id CVE-2023-24895
reference_type
scores
url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24895
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-24895
reference_id CVE-2023-24895
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2023-24895
3
reference_url https://github.com/advisories/GHSA-jh2h-qcrw-ghg7
reference_id GHSA-jh2h-qcrw-ghg7
reference_type
scores
url https://github.com/advisories/GHSA-jh2h-qcrw-ghg7
4
reference_url https://github.com/dotnet/wpf/security/advisories/GHSA-jh2h-qcrw-ghg7
reference_id GHSA-jh2h-qcrw-ghg7
reference_type
scores
url https://github.com/dotnet/wpf/security/advisories/GHSA-jh2h-qcrw-ghg7
fixed_packages
0
url pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@6.0.18
purl pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@6.0.18
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@6.0.18
1
url pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@7.0.7
purl pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@7.0.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@7.0.7
aliases CVE-2023-24895, GHSA-jh2h-qcrw-ghg7
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1rea-gajy-ffhw
1
url VCID-sb8v-unuf-nfhj
vulnerability_id VCID-sb8v-unuf-nfhj
summary 
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
.NET and Visual Studio Elevation of Privilege Vulnerability
references
0
reference_url https://github.com/dotnet/announcements/issues/263
reference_id
reference_type
scores
url https://github.com/dotnet/announcements/issues/263
1
reference_url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33127
reference_id CVE-2023-33127
reference_type
scores
url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33127
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-33127
reference_id CVE-2023-33127
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2023-33127
3
reference_url https://github.com/advisories/GHSA-485r-rp8v-998v
reference_id GHSA-485r-rp8v-998v
reference_type
scores
url https://github.com/advisories/GHSA-485r-rp8v-998v
4
reference_url https://github.com/dotnet/runtime/security/advisories/GHSA-485r-rp8v-998v
reference_id GHSA-485r-rp8v-998v
reference_type
scores
url https://github.com/dotnet/runtime/security/advisories/GHSA-485r-rp8v-998v
fixed_packages
0
url pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@6.0.20
purl pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@6.0.20
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@6.0.20
1
url pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@7.0.9
purl pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@7.0.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@7.0.9
aliases CVE-2023-33127, GHSA-485r-rp8v-998v
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sb8v-unuf-nfhj
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.WindowsDesktop.App.Runtime.win-x64@6.0.0