Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/org.apache.olingo/odata-server-core@4.0.0

Type maven

Namespace org.apache.olingo

Name odata-server-core

Version 4.0.0

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 4.7.1

Latest_non_vulnerable_version 4.7.1

Affected_by_vulnerabilities

url VCID-b7eu-3gu8-y3fn

vulnerability_id VCID-b7eu-3gu8-y3fn

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-1925

reference_id

reference_type

scores

value	0.01178
scoring_system	epss
scoring_elements	0.79052
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-1925

reference_url

https://mail-archives.apache.org/mod_mbox/olingo-user/202001.mbox/%3CCAGSZ4d6HwpF2woOrZJg_d0SkHytXJaCtAWXa3ZtBn33WG0YFvw%40mail.gmail.com%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://mail-archives.apache.org/mod_mbox/olingo-user/202001.mbox/%3CCAGSZ4d6HwpF2woOrZJg_d0SkHytXJaCtAWXa3ZtBn33WG0YFvw%40mail.gmail.com%3E

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2020-1925

reference_id

CVE-2020-1925

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2020-1925

reference_url

https://github.com/advisories/GHSA-v4qh-6367-4cx2

reference_id

GHSA-v4qh-6367-4cx2

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-v4qh-6367-4cx2

fixed_packages

url	pkg:maven/org.apache.olingo/odata-server-core@4.7.1
purl	pkg:maven/org.apache.olingo/odata-server-core@4.7.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.olingo/odata-server-core@4.7.1

aliases CVE-2020-1925, GHSA-v4qh-6367-4cx2

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b7eu-3gu8-y3fn

url VCID-jgkv-y1ug-tuf7

vulnerability_id VCID-jgkv-y1ug-tuf7

summary

references

reference_url

http://packetstormsecurity.com/files/155619/Apache-Olingo-OData-4.6.x-XML-Injection.html

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://packetstormsecurity.com/files/155619/Apache-Olingo-OData-4.6.x-XML-Injection.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-17554

reference_id

reference_type

scores

value	0.52533
scoring_system	epss
scoring_elements	0.97985
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-17554

reference_url

https://github.com/apache/olingo-odata4/commit/5948974ad28271818e2afe747c71cde56a7f2c63

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/olingo-odata4/commit/5948974ad28271818e2afe747c71cde56a7f2c63

reference_url

https://github.com/apache/olingo-odata4/commit/c3f982db3d97e395d313ae8f231202bb2139882c

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/olingo-odata4/commit/c3f982db3d97e395d313ae8f231202bb2139882c

reference_url

https://issues.apache.org/jira/browse/OLINGO-1409

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://issues.apache.org/jira/browse/OLINGO-1409

reference_url

https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c@%3Cannounce.apache.org%3E

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c@%3Cannounce.apache.org%3E

reference_url

https://mail-archives.apache.org/mod_mbox/olingo-user/201912.mbox/%3CCAGSZ4d7Ty%3DL-n_iAzT6vcQp65BY29XZDS5tMoM8MdDrb1moM7A%40mail.gmail.com%3E

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://mail-archives.apache.org/mod_mbox/olingo-user/201912.mbox/%3CCAGSZ4d7Ty%3DL-n_iAzT6vcQp65BY29XZDS5tMoM8MdDrb1moM7A%40mail.gmail.com%3E

reference_url

https://seclists.org/bugtraq/2019/Dec/11

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://seclists.org/bugtraq/2019/Dec/11

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/java/webapps/47770.txt
reference_id	CVE-2019-17554
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/java/webapps/47770.txt

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-17554

reference_id

CVE-2019-17554

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2019-17554

reference_url

https://github.com/advisories/GHSA-mgh8-hcwj-h57v

reference_id

GHSA-mgh8-hcwj-h57v

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-mgh8-hcwj-h57v

fixed_packages

url pkg:maven/org.apache.olingo/odata-server-core@4.7.0

purl pkg:maven/org.apache.olingo/odata-server-core@4.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-b7eu-3gu8-y3fn

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.olingo/odata-server-core@4.7.0

aliases CVE-2019-17554, GHSA-mgh8-hcwj-h57v

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jgkv-y1ug-tuf7

url VCID-wqwe-ea1s-5yad

vulnerability_id VCID-wqwe-ea1s-5yad

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-17556

reference_id

reference_type

scores

value	0.00782
scoring_system	epss
scoring_elements	0.74027
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-17556

reference_url

https://github.com/apache/olingo-odata4/pull/60/files

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/olingo-odata4/pull/60/files

reference_url

https://issues.apache.org/jira/browse/OLINGO-1410

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://issues.apache.org/jira/browse/OLINGO-1410

reference_url

https://mail-archives.apache.org/mod_mbox/olingo-user/201912.mbox/%3CCAGSZ4d4vbSYaVh3aUWAvcVHK2qcFxxCZd3WAx3xbwZXskPX8nw%40mail.gmail.com%3E

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://mail-archives.apache.org/mod_mbox/olingo-user/201912.mbox/%3CCAGSZ4d4vbSYaVh3aUWAvcVHK2qcFxxCZd3WAx3xbwZXskPX8nw%40mail.gmail.com%3E

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-17556

reference_id

CVE-2019-17556

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2019-17556

reference_url

https://github.com/advisories/GHSA-gj76-429m-56wc

reference_id

GHSA-gj76-429m-56wc

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-gj76-429m-56wc

fixed_packages

url pkg:maven/org.apache.olingo/odata-server-core@4.7.0

purl pkg:maven/org.apache.olingo/odata-server-core@4.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-b7eu-3gu8-y3fn

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.olingo/odata-server-core@4.7.0

aliases CVE-2019-17556, GHSA-gj76-429m-56wc

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wqwe-ea1s-5yad

url VCID-xqjd-th5j-9khh

vulnerability_id VCID-xqjd-th5j-9khh

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-17555

reference_id

reference_type

scores

value	0.02203
scoring_system	epss
scoring_elements	0.84707
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-17555

reference_url

https://github.com/apache/olingo-odata4/pull/61

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/olingo-odata4/pull/61

reference_url

https://issues.apache.org/jira/browse/OLINGO-1411

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://issues.apache.org/jira/browse/OLINGO-1411

reference_url

https://mail-archives.apache.org/mod_mbox/olingo-user/201912.mbox/%3CCAGSZ4d65UmudJ_MQkFXEv9YY_wwZbRA3sgtNDzMoLM51Qh%3DRCA%40mail.gmail.com%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://mail-archives.apache.org/mod_mbox/olingo-user/201912.mbox/%3CCAGSZ4d65UmudJ_MQkFXEv9YY_wwZbRA3sgtNDzMoLM51Qh%3DRCA%40mail.gmail.com%3E

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-17555

reference_id

CVE-2019-17555

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2019-17555

reference_url

https://github.com/advisories/GHSA-477x-w7m6-c6ph

reference_id

GHSA-477x-w7m6-c6ph

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-477x-w7m6-c6ph

fixed_packages

url pkg:maven/org.apache.olingo/odata-server-core@4.7.0

purl pkg:maven/org.apache.olingo/odata-server-core@4.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-b7eu-3gu8-y3fn

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.olingo/odata-server-core@4.7.0

aliases CVE-2019-17555, GHSA-477x-w7m6-c6ph

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xqjd-th5j-9khh

Fixing_vulnerabilities

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.olingo/odata-server-core@4.0.0

Package Instance