Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/libxml2@2.9.4%2Bdfsg1-5.1?distro=trixie
Typedeb
Namespacedebian
Namelibxml2
Version2.9.4+dfsg1-5.1
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2.9.4+dfsg1-5.2
Latest_non_vulnerable_version2.15.2+dfsg-0.1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-3whx-6t3e-7beq
vulnerability_id VCID-3whx-6t3e-7beq
summary 
Multiple vulnerabilities have been found in libxml2, the worst of
    which could result in the execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5969.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5969.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-5969
reference_id
reference_type
scores
0
value 0.02935
scoring_system epss
scoring_elements 0.86361
published_at 2026-04-01T12:55:00Z
1
value 0.02935
scoring_system epss
scoring_elements 0.86426
published_at 2026-04-13T12:55:00Z
2
value 0.02935
scoring_system epss
scoring_elements 0.86461
published_at 2026-04-24T12:55:00Z
3
value 0.02935
scoring_system epss
scoring_elements 0.86471
published_at 2026-04-26T12:55:00Z
4
value 0.02935
scoring_system epss
scoring_elements 0.86468
published_at 2026-04-29T12:55:00Z
5
value 0.02935
scoring_system epss
scoring_elements 0.86489
published_at 2026-05-05T12:55:00Z
6
value 0.02935
scoring_system epss
scoring_elements 0.86509
published_at 2026-05-07T12:55:00Z
7
value 0.02935
scoring_system epss
scoring_elements 0.86528
published_at 2026-05-09T12:55:00Z
8
value 0.02935
scoring_system epss
scoring_elements 0.86372
published_at 2026-04-02T12:55:00Z
9
value 0.02935
scoring_system epss
scoring_elements 0.86389
published_at 2026-04-04T12:55:00Z
10
value 0.02935
scoring_system epss
scoring_elements 0.86391
published_at 2026-04-07T12:55:00Z
11
value 0.02935
scoring_system epss
scoring_elements 0.8641
published_at 2026-04-08T12:55:00Z
12
value 0.02935
scoring_system epss
scoring_elements 0.8642
published_at 2026-04-09T12:55:00Z
13
value 0.02935
scoring_system epss
scoring_elements 0.86434
published_at 2026-04-11T12:55:00Z
14
value 0.02935
scoring_system epss
scoring_elements 0.86432
published_at 2026-04-12T12:55:00Z
15
value 0.02935
scoring_system epss
scoring_elements 0.86443
published_at 2026-04-16T12:55:00Z
16
value 0.02935
scoring_system epss
scoring_elements 0.86448
published_at 2026-04-18T12:55:00Z
17
value 0.02935
scoring_system epss
scoring_elements 0.86442
published_at 2026-04-21T12:55:00Z
18
value 0.03505
scoring_system epss
scoring_elements 0.87698
published_at 2026-05-11T12:55:00Z
19
value 0.03505
scoring_system epss
scoring_elements 0.87711
published_at 2026-05-12T12:55:00Z
20
value 0.03505
scoring_system epss
scoring_elements 0.87743
published_at 2026-05-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-5969
2
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=778519
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=778519
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5969
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5969
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.6
scoring_system cvssv2
scoring_elements AV:N/AC:H/Au:N/C:N/I:N/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://lists.debian.org/debian-lts-announce/2022/04/msg00004.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2022/04/msg00004.html
6
reference_url https://security.gentoo.org/glsa/201711-01
reference_id
reference_type
scores
url https://security.gentoo.org/glsa/201711-01
7
reference_url http://www.openwall.com/lists/oss-security/2016/11/05/3
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2016/11/05/3
8
reference_url http://www.openwall.com/lists/oss-security/2017/02/13/1
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2017/02/13/1
9
reference_url http://www.securityfocus.com/bid/96188
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/96188
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1421996
reference_id 1421996
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1421996
11
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855001
reference_id 855001
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855001
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxml2:2.9.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:xmlsoft:libxml2:2.9.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xmlsoft:libxml2:2.9.4:*:*:*:*:*:*:*
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-5969
reference_id CVE-2017-5969
reference_type
scores
0
value 2.6
scoring_system cvssv2
scoring_elements AV:N/AC:H/Au:N/C:N/I:N/A:P
1
value 4.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-5969
fixed_packages
0
url pkg:deb/debian/libxml2@2.9.4%2Bdfsg1-5.1?distro=trixie
purl pkg:deb/debian/libxml2@2.9.4%2Bdfsg1-5.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.9.4%252Bdfsg1-5.1%3Fdistro=trixie
1
url pkg:deb/debian/libxml2@2.9.10%2Bdfsg-6.7%2Bdeb11u4?distro=trixie
purl pkg:deb/debian/libxml2@2.9.10%2Bdfsg-6.7%2Bdeb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-62bb-e8vk-7uh4
1
vulnerability VCID-d1ar-1945-sygd
2
vulnerability VCID-knx8-5fpz-zbgn
3
vulnerability VCID-nj3a-zqw9-6bga
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.9.10%252Bdfsg-6.7%252Bdeb11u4%3Fdistro=trixie
2
url pkg:deb/debian/libxml2@2.9.14%2Bdfsg-1.3~deb12u5?distro=trixie
purl pkg:deb/debian/libxml2@2.9.14%2Bdfsg-1.3~deb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-62bb-e8vk-7uh4
1
vulnerability VCID-d1ar-1945-sygd
2
vulnerability VCID-knx8-5fpz-zbgn
3
vulnerability VCID-nj3a-zqw9-6bga
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.9.14%252Bdfsg-1.3~deb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libxml2@2.12.7%2Bdfsg%2Breally2.9.14-2.1%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/libxml2@2.12.7%2Bdfsg%2Breally2.9.14-2.1%2Bdeb13u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-62bb-e8vk-7uh4
1
vulnerability VCID-d1ar-1945-sygd
2
vulnerability VCID-knx8-5fpz-zbgn
3
vulnerability VCID-nj3a-zqw9-6bga
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.12.7%252Bdfsg%252Breally2.9.14-2.1%252Bdeb13u2%3Fdistro=trixie
4
url pkg:deb/debian/libxml2@2.15.2%2Bdfsg-0.1?distro=trixie
purl pkg:deb/debian/libxml2@2.15.2%2Bdfsg-0.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.15.2%252Bdfsg-0.1%3Fdistro=trixie
aliases CVE-2017-5969
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3whx-6t3e-7beq
1
url VCID-57yv-ay7b-v7ev
vulnerability_id VCID-57yv-ay7b-v7ev
summary 
Out-of-bounds Write
An integer overflow in xmlmemory.c in libxml2, as used in Google Chrome and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted XML file.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5130.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5130.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-5130
reference_id
reference_type
scores
0
value 0.01165
scoring_system epss
scoring_elements 0.78816
published_at 2026-05-14T12:55:00Z
1
value 0.01165
scoring_system epss
scoring_elements 0.78576
published_at 2026-04-01T12:55:00Z
2
value 0.01165
scoring_system epss
scoring_elements 0.78583
published_at 2026-04-02T12:55:00Z
3
value 0.01165
scoring_system epss
scoring_elements 0.78614
published_at 2026-04-04T12:55:00Z
4
value 0.01165
scoring_system epss
scoring_elements 0.78596
published_at 2026-04-07T12:55:00Z
5
value 0.01165
scoring_system epss
scoring_elements 0.78621
published_at 2026-04-08T12:55:00Z
6
value 0.01165
scoring_system epss
scoring_elements 0.78628
published_at 2026-04-09T12:55:00Z
7
value 0.01165
scoring_system epss
scoring_elements 0.78652
published_at 2026-04-11T12:55:00Z
8
value 0.01165
scoring_system epss
scoring_elements 0.78634
published_at 2026-04-12T12:55:00Z
9
value 0.01165
scoring_system epss
scoring_elements 0.78627
published_at 2026-04-13T12:55:00Z
10
value 0.01165
scoring_system epss
scoring_elements 0.78655
published_at 2026-04-16T12:55:00Z
11
value 0.01165
scoring_system epss
scoring_elements 0.78653
published_at 2026-04-18T12:55:00Z
12
value 0.01165
scoring_system epss
scoring_elements 0.7865
published_at 2026-04-21T12:55:00Z
13
value 0.01165
scoring_system epss
scoring_elements 0.78705
published_at 2026-04-29T12:55:00Z
14
value 0.01165
scoring_system epss
scoring_elements 0.78726
published_at 2026-05-05T12:55:00Z
15
value 0.01165
scoring_system epss
scoring_elements 0.78749
published_at 2026-05-07T12:55:00Z
16
value 0.01165
scoring_system epss
scoring_elements 0.78764
published_at 2026-05-09T12:55:00Z
17
value 0.01165
scoring_system epss
scoring_elements 0.78761
published_at 2026-05-11T12:55:00Z
18
value 0.01165
scoring_system epss
scoring_elements 0.78777
published_at 2026-05-12T12:55:00Z
19
value 0.01181
scoring_system epss
scoring_elements 0.78805
published_at 2026-04-24T12:55:00Z
20
value 0.01181
scoring_system epss
scoring_elements 0.78812
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-5130
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5130
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5130
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url http://www.securityfocus.com/bid/101482
reference_id 101482
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T22:02:28Z/
url http://www.securityfocus.com/bid/101482
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1503537
reference_id 1503537
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1503537
6
reference_url https://crbug.com/722079
reference_id 722079
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T22:02:28Z/
url https://crbug.com/722079
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880000
reference_id 880000
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880000
8
reference_url https://security.archlinux.org/ASA-201710-27
reference_id ASA-201710-27
reference_type
scores
url https://security.archlinux.org/ASA-201710-27
9
reference_url https://security.archlinux.org/AVG-456
reference_id AVG-456
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-456
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-5130
reference_id CVE-2017-5130
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2017-5130
11
reference_url https://security.gentoo.org/glsa/201710-24
reference_id GLSA-201710-24
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T22:02:28Z/
url https://security.gentoo.org/glsa/201710-24
12
reference_url https://git.gnome.org/browse/libxml2/commit/?id=897dffbae322b46b83f99a607d527058a72c51ed
reference_id ?id=897dffbae322b46b83f99a607d527058a72c51ed
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T22:02:28Z/
url https://git.gnome.org/browse/libxml2/commit/?id=897dffbae322b46b83f99a607d527058a72c51ed
13
reference_url https://lists.debian.org/debian-lts-announce/2017/11/msg00034.html
reference_id msg00034.html
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T22:02:28Z/
url https://lists.debian.org/debian-lts-announce/2017/11/msg00034.html
14
reference_url https://access.redhat.com/errata/RHSA-2017:2997
reference_id RHSA-2017:2997
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T22:02:28Z/
url https://access.redhat.com/errata/RHSA-2017:2997
15
reference_url http://bugzilla.gnome.org/show_bug.cgi?id=783026
reference_id show_bug.cgi?id=783026
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T22:02:28Z/
url http://bugzilla.gnome.org/show_bug.cgi?id=783026
16
reference_url https://chromereleases.googleblog.com/2017/10/stable-channel-update-for-desktop.html
reference_id stable-channel-update-for-desktop.html
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-03T22:02:28Z/
url https://chromereleases.googleblog.com/2017/10/stable-channel-update-for-desktop.html
fixed_packages
0
url pkg:deb/debian/libxml2@2.9.4%2Bdfsg1-5.1?distro=trixie
purl pkg:deb/debian/libxml2@2.9.4%2Bdfsg1-5.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.9.4%252Bdfsg1-5.1%3Fdistro=trixie
1
url pkg:deb/debian/libxml2@2.9.10%2Bdfsg-6.7%2Bdeb11u4?distro=trixie
purl pkg:deb/debian/libxml2@2.9.10%2Bdfsg-6.7%2Bdeb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-62bb-e8vk-7uh4
1
vulnerability VCID-d1ar-1945-sygd
2
vulnerability VCID-knx8-5fpz-zbgn
3
vulnerability VCID-nj3a-zqw9-6bga
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.9.10%252Bdfsg-6.7%252Bdeb11u4%3Fdistro=trixie
2
url pkg:deb/debian/libxml2@2.9.14%2Bdfsg-1.3~deb12u5?distro=trixie
purl pkg:deb/debian/libxml2@2.9.14%2Bdfsg-1.3~deb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-62bb-e8vk-7uh4
1
vulnerability VCID-d1ar-1945-sygd
2
vulnerability VCID-knx8-5fpz-zbgn
3
vulnerability VCID-nj3a-zqw9-6bga
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.9.14%252Bdfsg-1.3~deb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libxml2@2.12.7%2Bdfsg%2Breally2.9.14-2.1%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/libxml2@2.12.7%2Bdfsg%2Breally2.9.14-2.1%2Bdeb13u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-62bb-e8vk-7uh4
1
vulnerability VCID-d1ar-1945-sygd
2
vulnerability VCID-knx8-5fpz-zbgn
3
vulnerability VCID-nj3a-zqw9-6bga
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.12.7%252Bdfsg%252Breally2.9.14-2.1%252Bdeb13u2%3Fdistro=trixie
4
url pkg:deb/debian/libxml2@2.15.2%2Bdfsg-0.1?distro=trixie
purl pkg:deb/debian/libxml2@2.15.2%2Bdfsg-0.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.15.2%252Bdfsg-0.1%3Fdistro=trixie
aliases CVE-2017-5130
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-57yv-ay7b-v7ev
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.9.4%252Bdfsg1-5.1%3Fdistro=trixie