Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-9hw6-zjwq-83gr

Summary denial of service

Aliases

alias	CVE-2021-43519

Fixed_packages

url	pkg:alpm/archlinux/lua@5.4.4-1
purl	pkg:alpm/archlinux/lua@5.4.4-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/lua@5.4.4-1

url pkg:conan/lua@5.3.5

purl pkg:conan/lua@5.3.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-k38z-6c33-vueb

vulnerability	VCID-s7du-gace-j3ev

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/lua@5.3.5

url	pkg:deb/debian/lua50@0?distro=bullseye
purl	pkg:deb/debian/lua50@0?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua50@0%3Fdistro=bullseye

url	pkg:deb/debian/lua50@5.0.3-8.1?distro=bullseye
purl	pkg:deb/debian/lua50@5.0.3-8.1?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua50@5.0.3-8.1%3Fdistro=bullseye

url	pkg:deb/debian/lua5.1@0?distro=trixie
purl	pkg:deb/debian/lua5.1@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.1@0%3Fdistro=trixie

url	pkg:deb/debian/lua5.1@5.1.5-8.1?distro=trixie
purl	pkg:deb/debian/lua5.1@5.1.5-8.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.1@5.1.5-8.1%3Fdistro=trixie

url	pkg:deb/debian/lua5.1@5.1.5-9?distro=trixie
purl	pkg:deb/debian/lua5.1@5.1.5-9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.1@5.1.5-9%3Fdistro=trixie

url	pkg:deb/debian/lua5.1@5.1.5-11?distro=trixie
purl	pkg:deb/debian/lua5.1@5.1.5-11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.1@5.1.5-11%3Fdistro=trixie

url	pkg:deb/debian/lua5.1@5.1.5-12?distro=trixie
purl	pkg:deb/debian/lua5.1@5.1.5-12?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.1@5.1.5-12%3Fdistro=trixie

url	pkg:deb/debian/lua5.2@0?distro=trixie
purl	pkg:deb/debian/lua5.2@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.2@0%3Fdistro=trixie

url	pkg:deb/debian/lua5.2@5.2.4-1.1?distro=trixie
purl	pkg:deb/debian/lua5.2@5.2.4-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.2@5.2.4-1.1%3Fdistro=trixie

url	pkg:deb/debian/lua5.2@5.2.4-3?distro=trixie
purl	pkg:deb/debian/lua5.2@5.2.4-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.2@5.2.4-3%3Fdistro=trixie

url	pkg:deb/debian/lua5.2@5.2.4-4?distro=trixie
purl	pkg:deb/debian/lua5.2@5.2.4-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.2@5.2.4-4%3Fdistro=trixie

url	pkg:deb/debian/lua5.3@0?distro=trixie
purl	pkg:deb/debian/lua5.3@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.3@0%3Fdistro=trixie

url	pkg:deb/debian/lua5.3@5.3.3-1.1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/lua5.3@5.3.3-1.1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.3@5.3.3-1.1%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/lua5.3@5.3.6-2?distro=trixie
purl	pkg:deb/debian/lua5.3@5.3.6-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.3@5.3.6-2%3Fdistro=trixie

url	pkg:deb/debian/lua5.3@5.3.6-3?distro=trixie
purl	pkg:deb/debian/lua5.3@5.3.6-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.3@5.3.6-3%3Fdistro=trixie

url	pkg:deb/debian/lua5.4@5.4.4-1?distro=trixie
purl	pkg:deb/debian/lua5.4@5.4.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-1%3Fdistro=trixie

url	pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1
purl	pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1

url	pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/lua5.4@5.4.4-3%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.4-3%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie
purl	pkg:deb/debian/lua5.4@5.4.7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.7-1%3Fdistro=trixie

url	pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie
purl	pkg:deb/debian/lua5.4@5.4.8-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.8-1%3Fdistro=trixie

Affected_packages

url pkg:alpm/archlinux/lua@5.4.3-1

purl pkg:alpm/archlinux/lua@5.4.3-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/lua@5.4.3-1

url pkg:alpm/archlinux/lua51@5.1.5-9

purl pkg:alpm/archlinux/lua51@5.1.5-9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

vulnerability	VCID-t68p-xm4z-pqe5

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/lua51@5.1.5-9

url pkg:alpm/archlinux/lua52@5.2.4-5

purl pkg:alpm/archlinux/lua52@5.2.4-5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/lua52@5.2.4-5

url pkg:alpm/archlinux/lua53@5.3.6-1

purl pkg:alpm/archlinux/lua53@5.3.6-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/lua53@5.3.6-1

url pkg:conan/lua@5.1.0

purl pkg:conan/lua@5.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/lua@5.1.0

url pkg:conan/lua@5.4.0

purl pkg:conan/lua@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

vulnerability	VCID-genu-xfqb-ryfk

vulnerability	VCID-k38z-6c33-vueb

vulnerability	VCID-n4rj-yf2u-j7fe

vulnerability	VCID-n66m-4kp4-a7ef

vulnerability	VCID-pdpa-5dks-u7a9

vulnerability	VCID-qp4c-jwam-nub9

vulnerability	VCID-s7du-gace-j3ev

vulnerability	VCID-t3vr-j6vw-33db

vulnerability	VCID-ute6-ecyg-9ffz

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/lua@5.4.0

url pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie

purl pkg:deb/debian/lua5.4@5.4.2-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

vulnerability	VCID-g3t3-qp1h-jfe3

vulnerability	VCID-genu-xfqb-ryfk

vulnerability	VCID-h37s-ads2-zugj

vulnerability	VCID-pdpa-5dks-u7a9

vulnerability	VCID-sypb-grma-cfhq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2%3Fdistro=trixie

url pkg:deb/debian/lua5.4@5.4.2-2

purl pkg:deb/debian/lua5.4@5.4.2-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

vulnerability	VCID-g3t3-qp1h-jfe3

vulnerability	VCID-genu-xfqb-ryfk

vulnerability	VCID-h37s-ads2-zugj

vulnerability	VCID-pdpa-5dks-u7a9

vulnerability	VCID-sypb-grma-cfhq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lua5.4@5.4.2-2

url pkg:rpm/redhat/lua@5.4.4-1.el9_0?arch=1

purl pkg:rpm/redhat/lua@5.4.4-1.el9_0?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

vulnerability	VCID-pdpa-5dks-u7a9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/lua@5.4.4-1.el9_0%3Farch=1

url pkg:rpm/redhat/lua@5.4.4-2?arch=el9_1

purl pkg:rpm/redhat/lua@5.4.4-2?arch=el9_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9hw6-zjwq-83gr

vulnerability	VCID-pdpa-5dks-u7a9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/lua@5.4.4-2%3Farch=el9_1

References

reference_url	http://lua-users.org/lists/lua-l/2021-10/msg00123.html
reference_id
reference_type
scores
url	http://lua-users.org/lists/lua-l/2021-10/msg00123.html

reference_url	http://lua-users.org/lists/lua-l/2021-11/msg00015.html
reference_id
reference_type
scores
url	http://lua-users.org/lists/lua-l/2021-11/msg00015.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-43519.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-43519.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-43519

reference_id

reference_type

scores

value	0.00174
scoring_system	epss
scoring_elements	0.38507
published_at	2026-06-04T12:55:00Z

value	0.00174
scoring_system	epss
scoring_elements	0.38596
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-43519

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43519
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43519

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1000228
reference_id	1000228
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1000228

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2047672
reference_id	2047672
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2047672

reference_url

https://security.archlinux.org/AVG-1302

reference_id

AVG-1302

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1302

reference_url

https://security.archlinux.org/AVG-2535

reference_id

AVG-2535

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2535

reference_url

https://security.archlinux.org/AVG-2536

reference_id

AVG-2536

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2536

reference_url

https://security.archlinux.org/AVG-2537

reference_id

AVG-2537

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2537

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2021-43519
reference_id	CVE-2021-43519
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2021-43519

reference_url	https://access.redhat.com/errata/RHSA-2023:0957
reference_id	RHSA-2023:0957
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0957

reference_url	https://access.redhat.com/errata/RHSA-2023:1211
reference_id	RHSA-2023:1211
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1211

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	674
name	Uncontrolled Recursion
description	The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	787
name	Out-of-bounds Write
description	The product writes data past the end, or before the beginning, of the intended buffer.

Exploits

Severity_range_score 0.1 - 5.5

Exploitability 0.5

Weighted_severity 5.0

Risk_score 2.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9hw6-zjwq-83gr

Vulnerability Instance