Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:npm/immutable@4.3.1
Typenpm
Namespace
Nameimmutable
Version4.3.1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version4.3.8
Latest_non_vulnerable_version5.1.5
Affected_by_vulnerabilities
0
url VCID-ev32-mahc-5ufa
vulnerability_id VCID-ev32-mahc-5ufa
summary 
Immutable is vulnerable to Prototype Pollution
_What kind of vulnerability is it? Who is impacted?_

A Prototype Pollution is possible in immutable via the mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject() APIs.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-29063.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-29063.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-29063
reference_id
reference_type
scores
0
value 0.0008
scoring_system epss
scoring_elements 0.23632
published_at 2026-06-09T12:55:00Z
1
value 0.0008
scoring_system epss
scoring_elements 0.23625
published_at 2026-06-08T12:55:00Z
2
value 0.0008
scoring_system epss
scoring_elements 0.23679
published_at 2026-06-07T12:55:00Z
3
value 0.0008
scoring_system epss
scoring_elements 0.23725
published_at 2026-06-06T12:55:00Z
4
value 0.0008
scoring_system epss
scoring_elements 0.2374
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-29063
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-29063
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-29063
3
reference_url https://github.com/immutable-js/immutable-js
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/immutable-js/immutable-js
4
reference_url https://github.com/immutable-js/immutable-js/commit/16b3313fdf2c5f579f10799e22869f6909abf945
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/immutable-js/immutable-js/commit/16b3313fdf2c5f579f10799e22869f6909abf945
5
reference_url https://github.com/immutable-js/immutable-js/commit/6e2cf1cfe6137e72dfa48fc2cfa8f4d399d113f9
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/immutable-js/immutable-js/commit/6e2cf1cfe6137e72dfa48fc2cfa8f4d399d113f9
6
reference_url https://github.com/immutable-js/immutable-js/commit/6ed4eb626906df788b08019061b292b90bc718cb
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/immutable-js/immutable-js/commit/6ed4eb626906df788b08019061b292b90bc718cb
7
reference_url https://github.com/immutable-js/immutable-js/issues/2178
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/immutable-js/immutable-js/issues/2178
8
reference_url https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-06T19:32:37Z/
url https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3
9
reference_url https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-06T19:32:37Z/
url https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8
10
reference_url https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-06T19:32:37Z/
url https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2445291
reference_id 2445291
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2445291
12
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-29063
reference_id CVE-2026-29063
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-29063
13
reference_url https://github.com/advisories/GHSA-wf6x-7x77-mvgw
reference_id GHSA-wf6x-7x77-mvgw
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wf6x-7x77-mvgw
14
reference_url https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw
reference_id GHSA-wf6x-7x77-mvgw
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-06T19:32:37Z/
url https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw
15
reference_url https://access.redhat.com/errata/RHSA-2026:11070
reference_id RHSA-2026:11070
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11070
16
reference_url https://access.redhat.com/errata/RHSA-2026:11217
reference_id RHSA-2026:11217
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11217
17
reference_url https://access.redhat.com/errata/RHSA-2026:11414
reference_id RHSA-2026:11414
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11414
18
reference_url https://access.redhat.com/errata/RHSA-2026:11858
reference_id RHSA-2026:11858
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11858
19
reference_url https://access.redhat.com/errata/RHSA-2026:11916
reference_id RHSA-2026:11916
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11916
20
reference_url https://access.redhat.com/errata/RHSA-2026:12118
reference_id RHSA-2026:12118
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:12118
21
reference_url https://access.redhat.com/errata/RHSA-2026:13542
reference_id RHSA-2026:13542
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13542
22
reference_url https://access.redhat.com/errata/RHSA-2026:13548
reference_id RHSA-2026:13548
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13548
23
reference_url https://access.redhat.com/errata/RHSA-2026:13791
reference_id RHSA-2026:13791
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13791
24
reference_url https://access.redhat.com/errata/RHSA-2026:13826
reference_id RHSA-2026:13826
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13826
25
reference_url https://access.redhat.com/errata/RHSA-2026:13829
reference_id RHSA-2026:13829
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13829
26
reference_url https://access.redhat.com/errata/RHSA-2026:13847
reference_id RHSA-2026:13847
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13847
27
reference_url https://access.redhat.com/errata/RHSA-2026:13853
reference_id RHSA-2026:13853
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13853
28
reference_url https://access.redhat.com/errata/RHSA-2026:17469
reference_id RHSA-2026:17469
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17469
29
reference_url https://access.redhat.com/errata/RHSA-2026:17598
reference_id RHSA-2026:17598
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17598
30
reference_url https://access.redhat.com/errata/RHSA-2026:19375
reference_id RHSA-2026:19375
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:19375
31
reference_url https://access.redhat.com/errata/RHSA-2026:19409
reference_id RHSA-2026:19409
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:19409
32
reference_url https://access.redhat.com/errata/RHSA-2026:19410
reference_id RHSA-2026:19410
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:19410
33
reference_url https://access.redhat.com/errata/RHSA-2026:19712
reference_id RHSA-2026:19712
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:19712
34
reference_url https://access.redhat.com/errata/RHSA-2026:20034
reference_id RHSA-2026:20034
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20034
35
reference_url https://access.redhat.com/errata/RHSA-2026:20041
reference_id RHSA-2026:20041
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20041
36
reference_url https://access.redhat.com/errata/RHSA-2026:20042
reference_id RHSA-2026:20042
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20042
37
reference_url https://access.redhat.com/errata/RHSA-2026:20088
reference_id RHSA-2026:20088
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20088
38
reference_url https://access.redhat.com/errata/RHSA-2026:21657
reference_id RHSA-2026:21657
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:21657
39
reference_url https://access.redhat.com/errata/RHSA-2026:21658
reference_id RHSA-2026:21658
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:21658
40
reference_url https://access.redhat.com/errata/RHSA-2026:21703
reference_id RHSA-2026:21703
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:21703
41
reference_url https://access.redhat.com/errata/RHSA-2026:21931
reference_id RHSA-2026:21931
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:21931
42
reference_url https://access.redhat.com/errata/RHSA-2026:22465
reference_id RHSA-2026:22465
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:22465
43
reference_url https://access.redhat.com/errata/RHSA-2026:24473
reference_id RHSA-2026:24473
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:24473
44
reference_url https://access.redhat.com/errata/RHSA-2026:6428
reference_id RHSA-2026:6428
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6428
45
reference_url https://access.redhat.com/errata/RHSA-2026:6568
reference_id RHSA-2026:6568
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6568
46
reference_url https://access.redhat.com/errata/RHSA-2026:6720
reference_id RHSA-2026:6720
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6720
47
reference_url https://access.redhat.com/errata/RHSA-2026:6926
reference_id RHSA-2026:6926
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6926
48
reference_url https://access.redhat.com/errata/RHSA-2026:7329
reference_id RHSA-2026:7329
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7329
49
reference_url https://access.redhat.com/errata/RHSA-2026:8218
reference_id RHSA-2026:8218
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8218
50
reference_url https://access.redhat.com/errata/RHSA-2026:8483
reference_id RHSA-2026:8483
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8483
51
reference_url https://access.redhat.com/errata/RHSA-2026:8484
reference_id RHSA-2026:8484
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8484
52
reference_url https://access.redhat.com/errata/RHSA-2026:8490
reference_id RHSA-2026:8490
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8490
53
reference_url https://access.redhat.com/errata/RHSA-2026:8491
reference_id RHSA-2026:8491
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8491
54
reference_url https://access.redhat.com/errata/RHSA-2026:8493
reference_id RHSA-2026:8493
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8493
55
reference_url https://access.redhat.com/errata/RHSA-2026:9742
reference_id RHSA-2026:9742
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9742
56
reference_url https://access.redhat.com/errata/RHSA-2026:9848
reference_id RHSA-2026:9848
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9848
fixed_packages
0
url pkg:npm/immutable@4.3.8
purl pkg:npm/immutable@4.3.8
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/immutable@4.3.8
1
url pkg:npm/immutable@5.1.5
purl pkg:npm/immutable@5.1.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/immutable@5.1.5
aliases CVE-2026-29063, GHSA-wf6x-7x77-mvgw
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ev32-mahc-5ufa
Fixing_vulnerabilities
Risk_score4.4
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:npm/immutable@4.3.1