Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/nemo-toolkit@1.9.0
Typepypi
Namespace
Namenemo-toolkit
Version1.9.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.6.2
Latest_non_vulnerable_version2.6.2
Affected_by_vulnerabilities
0
url VCID-83ez-47kf-kff3
vulnerability_id VCID-83ez-47kf-kff3
summary 
NVIDIA NeMo Framework contains an RCE vulnerability in checkpoint loading
NVIDIA NeMo Framework contains a vulnerability in checkpoint loading where an attacker could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure and data tampering.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-24157
reference_id
reference_type
scores
0
value 0.00135
scoring_system epss
scoring_elements 0.33072
published_at 2026-06-08T12:55:00Z
1
value 0.00135
scoring_system epss
scoring_elements 0.33104
published_at 2026-06-07T12:55:00Z
2
value 0.00135
scoring_system epss
scoring_elements 0.33142
published_at 2026-06-06T12:55:00Z
3
value 0.00135
scoring_system epss
scoring_elements 0.33091
published_at 2026-06-09T12:55:00Z
4
value 0.00135
scoring_system epss
scoring_elements 0.33128
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-24157
1
reference_url https://github.com/NVIDIA-NeMo/NeMo
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/NVIDIA-NeMo/NeMo
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-24157
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T20:51:59Z/
url https://nvd.nist.gov/vuln/detail/CVE-2026-24157
3
reference_url https://nvidia.custhelp.com/app/answers/detail/a_id/5800
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T20:51:59Z/
url https://nvidia.custhelp.com/app/answers/detail/a_id/5800
4
reference_url https://www.cve.org/CVERecord?id=CVE-2026-24157
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T20:51:59Z/
url https://www.cve.org/CVERecord?id=CVE-2026-24157
5
reference_url https://github.com/advisories/GHSA-m4jw-wgmf-889x
reference_id GHSA-m4jw-wgmf-889x
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m4jw-wgmf-889x
fixed_packages
0
url pkg:pypi/nemo-toolkit@2.6.2
purl pkg:pypi/nemo-toolkit@2.6.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/nemo-toolkit@2.6.2
aliases CVE-2026-24157, GHSA-m4jw-wgmf-889x
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-83ez-47kf-kff3
1
url VCID-hwrj-aexf-wydj
vulnerability_id VCID-hwrj-aexf-wydj
summary 
NVIDIA NeMo Framework contains a vulnerability leading to Remote Code Execution
NVIDIA NeMo Framework contains a vulnerability where an attacker may cause remote code execution. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure and data tampering.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-24159
reference_id
reference_type
scores
0
value 0.00135
scoring_system epss
scoring_elements 0.33072
published_at 2026-06-08T12:55:00Z
1
value 0.00135
scoring_system epss
scoring_elements 0.33104
published_at 2026-06-07T12:55:00Z
2
value 0.00135
scoring_system epss
scoring_elements 0.33142
published_at 2026-06-06T12:55:00Z
3
value 0.00135
scoring_system epss
scoring_elements 0.33091
published_at 2026-06-09T12:55:00Z
4
value 0.00135
scoring_system epss
scoring_elements 0.33128
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-24159
1
reference_url https://github.com/NVIDIA-NeMo/NeMo
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/NVIDIA-NeMo/NeMo
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-24159
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T20:52:06Z/
url https://nvd.nist.gov/vuln/detail/CVE-2026-24159
3
reference_url https://nvidia.custhelp.com/app/answers/detail/a_id/5800
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T20:52:06Z/
url https://nvidia.custhelp.com/app/answers/detail/a_id/5800
4
reference_url https://www.cve.org/CVERecord?id=CVE-2026-24159
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T20:52:06Z/
url https://www.cve.org/CVERecord?id=CVE-2026-24159
5
reference_url https://github.com/advisories/GHSA-v7v2-m736-cf3c
reference_id GHSA-v7v2-m736-cf3c
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-v7v2-m736-cf3c
fixed_packages
0
url pkg:pypi/nemo-toolkit@2.6.2
purl pkg:pypi/nemo-toolkit@2.6.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/nemo-toolkit@2.6.2
aliases CVE-2026-24159, GHSA-v7v2-m736-cf3c
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hwrj-aexf-wydj
2
url VCID-m7b4-q95q-wqfu
vulnerability_id VCID-m7b4-q95q-wqfu
summary 
NVIDIA NeMo Framework Deserializes Untrusted Data
NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution by convincing a user to load a maliciously crafted file. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-33253
reference_id
reference_type
scores
0
value 0.00103
scoring_system epss
scoring_elements 0.27701
published_at 2026-06-07T12:55:00Z
1
value 0.00103
scoring_system epss
scoring_elements 0.2766
published_at 2026-06-09T12:55:00Z
2
value 0.00103
scoring_system epss
scoring_elements 0.27653
published_at 2026-06-08T12:55:00Z
3
value 0.00103
scoring_system epss
scoring_elements 0.27739
published_at 2026-06-06T12:55:00Z
4
value 0.00103
scoring_system epss
scoring_elements 0.2779
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-33253
1
reference_url https://github.com/NVIDIA-NeMo/NeMo
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/NVIDIA-NeMo/NeMo
2
reference_url https://nvidia.custhelp.com/app/answers/detail/a_id/5762
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-19T04:55:45Z/
url https://nvidia.custhelp.com/app/answers/detail/a_id/5762
3
reference_url https://www.cve.org/CVERecord?id=CVE-2025-33253
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-19T04:55:45Z/
url https://www.cve.org/CVERecord?id=CVE-2025-33253
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-33253
reference_id CVE-2025-33253
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-19T04:55:45Z/
url https://nvd.nist.gov/vuln/detail/CVE-2025-33253
5
reference_url https://github.com/advisories/GHSA-hvjw-vp7g-39h5
reference_id GHSA-hvjw-vp7g-39h5
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hvjw-vp7g-39h5
fixed_packages
0
url pkg:pypi/nemo-toolkit@2.6.1
purl pkg:pypi/nemo-toolkit@2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-83ez-47kf-kff3
1
vulnerability VCID-hwrj-aexf-wydj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/nemo-toolkit@2.6.1
aliases CVE-2025-33253, GHSA-hvjw-vp7g-39h5
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m7b4-q95q-wqfu
3
url VCID-mckh-13ga-nff4
vulnerability_id VCID-mckh-13ga-nff4
summary NVIDIA NeMo Framework contains a vulnerability where malicious data could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-33245
reference_id
reference_type
scores
0
value 0.00337
scoring_system epss
scoring_elements 0.56815
published_at 2026-06-07T12:55:00Z
1
value 0.00337
scoring_system epss
scoring_elements 0.568
published_at 2026-06-08T12:55:00Z
2
value 0.00337
scoring_system epss
scoring_elements 0.5682
published_at 2026-06-09T12:55:00Z
3
value 0.00337
scoring_system epss
scoring_elements 0.56827
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-33245
1
reference_url https://github.com/NVIDIA-NeMo/NeMo
reference_id
reference_type
scores
0
value 8.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/NVIDIA-NeMo/NeMo
2
reference_url https://nvidia.custhelp.com/app/answers/detail/a_id/5762
reference_id
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value 8.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-19T04:55:40Z/
url https://nvidia.custhelp.com/app/answers/detail/a_id/5762
3
reference_url https://www.cve.org/CVERecord?id=CVE-2025-33245
reference_id
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value 8.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-19T04:55:40Z/
url https://www.cve.org/CVERecord?id=CVE-2025-33245
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-33245
reference_id CVE-2025-33245
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value 8.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-19T04:55:40Z/
url https://nvd.nist.gov/vuln/detail/CVE-2025-33245
5
reference_url https://github.com/advisories/GHSA-9379-mwvr-7wxx
reference_id GHSA-9379-mwvr-7wxx
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9379-mwvr-7wxx
fixed_packages
0
url pkg:pypi/nemo-toolkit@2.6.1
purl pkg:pypi/nemo-toolkit@2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-83ez-47kf-kff3
1
vulnerability VCID-hwrj-aexf-wydj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/nemo-toolkit@2.6.1
aliases CVE-2025-33245, GHSA-9379-mwvr-7wxx
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mckh-13ga-nff4
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/nemo-toolkit@1.9.0