Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/binutils@2.37-3?distro=trixie

Type deb

Namespace debian

Name binutils

Version 2.37-3

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 2.37.50.20220106-1

Latest_non_vulnerable_version 2.46-3

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-7sc8-fzw3-vfer

vulnerability_id VCID-7sc8-fzw3-vfer

summary

Multiple vulnerabilities have been found in Binutils, the worst of
    which could result in a Denial of Service condition.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35448.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35448.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-35448

reference_id

reference_type

scores

value	0.00132
scoring_system	epss
scoring_elements	0.32892
published_at	2026-04-02T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32762
published_at	2026-04-01T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32927
published_at	2026-04-04T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.5566
published_at	2026-04-13T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55697
published_at	2026-04-11T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55678
published_at	2026-04-12T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55634
published_at	2026-04-07T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55686
published_at	2026-04-08T12:55:00Z

value	0.00327
scoring_system	epss
scoring_elements	0.55689
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-35448

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35448
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35448

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1950478
reference_id	1950478
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1950478

reference_url

https://security.archlinux.org/AVG-1385

reference_id

AVG-1385

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1385

reference_url	https://security.gentoo.org/glsa/202107-24
reference_id	GLSA-202107-24
reference_type
scores
url	https://security.gentoo.org/glsa/202107-24

reference_url	https://access.redhat.com/errata/RHSA-2021:4364
reference_id	RHSA-2021:4364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4364

fixed_packages

url	pkg:deb/debian/binutils@2.37-3?distro=trixie
purl	pkg:deb/debian/binutils@2.37-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.37-3%3Fdistro=trixie

url pkg:deb/debian/binutils@2.40-2?distro=trixie

purl pkg:deb/debian/binutils@2.40-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-6v51-g3b9-3qbf

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-ftkb-qtse-afhq

vulnerability	VCID-fx6h-7q2k-5fd2

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-jm7b-4gnb-uygv

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-sdx4-5wtj-hbf9

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vjrz-ss5c-skcc

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.40-2%3Fdistro=trixie

url pkg:deb/debian/binutils@2.44-3?distro=trixie

purl pkg:deb/debian/binutils@2.44-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.44-3%3Fdistro=trixie

url	pkg:deb/debian/binutils@2.46-3?distro=trixie
purl	pkg:deb/debian/binutils@2.46-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.46-3%3Fdistro=trixie

aliases CVE-2020-35448

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7sc8-fzw3-vfer

url VCID-hsyc-q23j-2ua3

vulnerability_id VCID-hsyc-q23j-2ua3

summary Multiple vulnerabilities have been discovered in Binutils, the worst of which could result in denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20284.json

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20284.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-20284

reference_id

reference_type

scores

value	0.00087
scoring_system	epss
scoring_elements	0.2516
published_at	2026-04-02T12:55:00Z

value	0.00087
scoring_system	epss
scoring_elements	0.25202
published_at	2026-04-04T12:55:00Z

value	0.00087
scoring_system	epss
scoring_elements	0.25076
published_at	2026-04-01T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25887
published_at	2026-04-11T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25846
published_at	2026-04-12T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25789
published_at	2026-04-13T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25752
published_at	2026-04-07T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25824
published_at	2026-04-08T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25875
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-20284

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20284
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20284

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1937784
reference_id	1937784
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1937784

reference_url	https://security.gentoo.org/glsa/202208-30
reference_id	GLSA-202208-30
reference_type
scores
url	https://security.gentoo.org/glsa/202208-30

reference_url	https://access.redhat.com/errata/RHSA-2021:4364
reference_id	RHSA-2021:4364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4364

fixed_packages

url	pkg:deb/debian/binutils@2.37-3?distro=trixie
purl	pkg:deb/debian/binutils@2.37-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.37-3%3Fdistro=trixie

url pkg:deb/debian/binutils@2.40-2?distro=trixie

purl pkg:deb/debian/binutils@2.40-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-6v51-g3b9-3qbf

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-ftkb-qtse-afhq

vulnerability	VCID-fx6h-7q2k-5fd2

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-jm7b-4gnb-uygv

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-sdx4-5wtj-hbf9

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vjrz-ss5c-skcc

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.40-2%3Fdistro=trixie

url pkg:deb/debian/binutils@2.44-3?distro=trixie

purl pkg:deb/debian/binutils@2.44-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.44-3%3Fdistro=trixie

url	pkg:deb/debian/binutils@2.46-3?distro=trixie
purl	pkg:deb/debian/binutils@2.46-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.46-3%3Fdistro=trixie

aliases CVE-2021-20284

risk_score 2.1

exploitability 0.5

weighted_severity 4.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hsyc-q23j-2ua3

url VCID-pkej-frsd-gqdk

vulnerability_id VCID-pkej-frsd-gqdk

summary binutils: heap-based buffer overflow in bfd_getl32() in bfd/libbfd.c

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19726.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19726.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-19726

reference_id

reference_type

scores

value	0.00097
scoring_system	epss
scoring_elements	0.26971
published_at	2026-04-01T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.27011
published_at	2026-04-02T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26855
published_at	2026-04-13T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26953
published_at	2026-04-09T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26957
published_at	2026-04-11T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26912
published_at	2026-04-12T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.27048
published_at	2026-04-04T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26838
published_at	2026-04-07T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26906
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-19726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19726
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19726

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2233934
reference_id	2233934
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2233934

reference_url

https://sourceware.org/bugzilla/show_bug.cgi?id=26240

reference_id

show_bug.cgi?id=26240

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-04T16:23:24Z/

url

https://sourceware.org/bugzilla/show_bug.cgi?id=26240

reference_url

https://sourceware.org/bugzilla/show_bug.cgi?id=26241

reference_id

show_bug.cgi?id=26241

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-04T16:23:24Z/

url

https://sourceware.org/bugzilla/show_bug.cgi?id=26241

reference_url	https://usn.ubuntu.com/6381-1/
reference_id	USN-6381-1
reference_type
scores
url	https://usn.ubuntu.com/6381-1/

reference_url	https://usn.ubuntu.com/6544-1/
reference_id	USN-6544-1
reference_type
scores
url	https://usn.ubuntu.com/6544-1/

fixed_packages

url	pkg:deb/debian/binutils@2.37-3?distro=trixie
purl	pkg:deb/debian/binutils@2.37-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.37-3%3Fdistro=trixie

url pkg:deb/debian/binutils@2.40-2?distro=trixie

purl pkg:deb/debian/binutils@2.40-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-6v51-g3b9-3qbf

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-ftkb-qtse-afhq

vulnerability	VCID-fx6h-7q2k-5fd2

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-jm7b-4gnb-uygv

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-sdx4-5wtj-hbf9

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vjrz-ss5c-skcc

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.40-2%3Fdistro=trixie

url pkg:deb/debian/binutils@2.44-3?distro=trixie

purl pkg:deb/debian/binutils@2.44-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.44-3%3Fdistro=trixie

url	pkg:deb/debian/binutils@2.46-3?distro=trixie
purl	pkg:deb/debian/binutils@2.46-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.46-3%3Fdistro=trixie

aliases CVE-2020-19726

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pkej-frsd-gqdk

url VCID-uv5p-15z7-fqcn

vulnerability_id VCID-uv5p-15z7-fqcn

summary Multiple vulnerabilities have been discovered in Binutils, the worst of which could result in denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3549.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3549.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3549

reference_id

reference_type

scores

value	0.00193
scoring_system	epss
scoring_elements	0.41213
published_at	2026-04-01T12:55:00Z

value	0.00193
scoring_system	epss
scoring_elements	0.41259
published_at	2026-04-07T12:55:00Z

value	0.00193
scoring_system	epss
scoring_elements	0.41307
published_at	2026-04-02T12:55:00Z

value	0.00193
scoring_system	epss
scoring_elements	0.41335
published_at	2026-04-04T12:55:00Z

value	0.00346
scoring_system	epss
scoring_elements	0.5717
published_at	2026-04-09T12:55:00Z

value	0.00346
scoring_system	epss
scoring_elements	0.57182
published_at	2026-04-11T12:55:00Z

value	0.00346
scoring_system	epss
scoring_elements	0.57161
published_at	2026-04-12T12:55:00Z

value	0.00346
scoring_system	epss
scoring_elements	0.57168
published_at	2026-04-08T12:55:00Z

value	0.00346
scoring_system	epss
scoring_elements	0.57141
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3549

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3549
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3549

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1960717
reference_id	1960717
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1960717

reference_url

https://security.archlinux.org/AVG-2002

reference_id

AVG-2002

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2002

reference_url	https://security.gentoo.org/glsa/202208-30
reference_id	GLSA-202208-30
reference_type
scores
url	https://security.gentoo.org/glsa/202208-30

fixed_packages

url	pkg:deb/debian/binutils@2.37-3?distro=trixie
purl	pkg:deb/debian/binutils@2.37-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.37-3%3Fdistro=trixie

url pkg:deb/debian/binutils@2.40-2?distro=trixie

purl pkg:deb/debian/binutils@2.40-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-6v51-g3b9-3qbf

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-ftkb-qtse-afhq

vulnerability	VCID-fx6h-7q2k-5fd2

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-jm7b-4gnb-uygv

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-sdx4-5wtj-hbf9

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vjrz-ss5c-skcc

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.40-2%3Fdistro=trixie

url pkg:deb/debian/binutils@2.44-3?distro=trixie

purl pkg:deb/debian/binutils@2.44-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.44-3%3Fdistro=trixie

url	pkg:deb/debian/binutils@2.46-3?distro=trixie
purl	pkg:deb/debian/binutils@2.46-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.46-3%3Fdistro=trixie

aliases CVE-2021-3549

risk_score 2.8

exploitability 0.5

weighted_severity 5.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uv5p-15z7-fqcn

url VCID-znqk-35mz-dqfk

vulnerability_id VCID-znqk-35mz-dqfk

summary Multiple vulnerabilities have been discovered in Binutils, the worst of which could result in denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20197.json

reference_id

reference_type

scores

value	4.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20197.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-20197

reference_id

reference_type

scores

value	0.00115
scoring_system	epss
scoring_elements	0.30284
published_at	2026-04-01T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30186
published_at	2026-04-13T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30313
published_at	2026-04-02T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30361
published_at	2026-04-04T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30177
published_at	2026-04-07T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30238
published_at	2026-04-08T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30272
published_at	2026-04-09T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30275
published_at	2026-04-11T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30232
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-20197

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20197
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20197

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1913743

reference_id

1913743

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T15:08:08Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=1913743

reference_url

https://security.archlinux.org/AVG-1540

reference_id

AVG-1540

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1540

reference_url

https://security.gentoo.org/glsa/202208-30

reference_id

GLSA-202208-30

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T15:08:08Z/

url

https://security.gentoo.org/glsa/202208-30

reference_url

https://security.netapp.com/advisory/ntap-20210528-0009/

reference_id

ntap-20210528-0009

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T15:08:08Z/

url

https://security.netapp.com/advisory/ntap-20210528-0009/

reference_url	https://access.redhat.com/errata/RHSA-2021:4364
reference_id	RHSA-2021:4364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4364

reference_url

https://sourceware.org/bugzilla/show_bug.cgi?id=26945

reference_id

show_bug.cgi?id=26945

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T15:08:08Z/

url

https://sourceware.org/bugzilla/show_bug.cgi?id=26945

fixed_packages

url	pkg:deb/debian/binutils@2.37-3?distro=trixie
purl	pkg:deb/debian/binutils@2.37-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.37-3%3Fdistro=trixie

url pkg:deb/debian/binutils@2.40-2?distro=trixie

purl pkg:deb/debian/binutils@2.40-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-6v51-g3b9-3qbf

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-ftkb-qtse-afhq

vulnerability	VCID-fx6h-7q2k-5fd2

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-jm7b-4gnb-uygv

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-sdx4-5wtj-hbf9

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vjrz-ss5c-skcc

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.40-2%3Fdistro=trixie

url pkg:deb/debian/binutils@2.44-3?distro=trixie

purl pkg:deb/debian/binutils@2.44-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2feg-zk6f-jqax

vulnerability	VCID-4d5t-1hwt-43at

vulnerability	VCID-4k1k-tmj9-zyar

vulnerability	VCID-6kvf-hsu3-nfc3

vulnerability	VCID-7vbm-bp51-4faa

vulnerability	VCID-84t7-666n-fydn

vulnerability	VCID-88yz-vyfa-xuec

vulnerability	VCID-8p5q-y7th-e7a3

vulnerability	VCID-a6f4-kkt1-yugs

vulnerability	VCID-b7k7-s2rd-j3h1

vulnerability	VCID-dfhw-bvdv-4udd

vulnerability	VCID-ek5t-65by-syac

vulnerability	VCID-hd32-zxxu-6bh4

vulnerability	VCID-j49e-hexk-7kgd

vulnerability	VCID-k6ey-kdwp-17ed

vulnerability	VCID-kh2b-vdkt-nkep

vulnerability	VCID-pejn-n3rz-33bs

vulnerability	VCID-pjtw-r398-uqgw

vulnerability	VCID-syyt-ureu-23h8

vulnerability	VCID-t9qr-esv2-g7he

vulnerability	VCID-tmj2-8abu-fuen

vulnerability	VCID-vcgu-7pzk-2udx

vulnerability	VCID-vwk2-2pwb-muhu

vulnerability	VCID-wj3y-5jmt-7ugw

vulnerability	VCID-x3kv-wwqy-8bav

vulnerability	VCID-y2a1-fczv-k7e2

vulnerability	VCID-ycgk-1xz6-h3fm

vulnerability	VCID-z1d7-yjdv-hyh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.44-3%3Fdistro=trixie

url	pkg:deb/debian/binutils@2.46-3?distro=trixie
purl	pkg:deb/debian/binutils@2.46-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.46-3%3Fdistro=trixie

aliases CVE-2021-20197

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-znqk-35mz-dqfk

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/binutils@2.37-3%3Fdistro=trixie

Package Instance