Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/6336?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6336?format=api", "vulnerability_id": "VCID-y2t2-p4g3-xfdf", "summary": "Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either `'infinity'`, `'inf'` or `float('inf')` (or their negatives) to `datetime` or `date` fields causes validation to run forever with 100% CPU usage (on one CPU). Pydantic has been patched with fixes available in the following versions: v1.8.2, v1.7.4, v1.6.2. All these versions are available on pypi(https://pypi.org/project/pydantic/#history), and will be available on conda-forge(https://anaconda.org/conda-forge/pydantic) soon. See the changelog(https://pydantic-docs.helpmanual.io/) for details. If you absolutely can't upgrade, you can work around this risk using a validator(https://pydantic-docs.helpmanual.io/usage/validators/) to catch these values. This is not an ideal solution (in particular you'll need a slightly different function for datetimes), instead of a hack like this you should upgrade pydantic. If you are not using v1.8.x, v1.7.x or v1.6.x and are unable to upgrade to a fixed version of pydantic, please create an issue at https://github.com/samuelcolvin/pydantic/issues requesting a back-port, and we will endeavour to release a patch for earlier versions of pydantic.", "aliases": [ { "alias": "CVE-2021-29510" }, { "alias": "GHSA-5jqp-qgf6-3pvh" }, { "alias": "PYSEC-2021-47" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/373797?format=api", "purl": "pkg:alpm/archlinux/python-pydantic@1.8.2-1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/python-pydantic@1.8.2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/936107?format=api", "purl": "pkg:deb/debian/pydantic@1.7.4-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pydantic@1.7.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/936106?format=api", "purl": "pkg:deb/debian/pydantic@1.10.4-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pydantic@1.10.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/936109?format=api", "purl": "pkg:deb/debian/pydantic@2.10.6-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pydantic@2.10.6-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/936108?format=api", "purl": "pkg:deb/debian/pydantic@2.12.5-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pydantic@2.12.5-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1103045?format=api", "purl": "pkg:deb/debian/pydantic@2.13.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/pydantic@2.13.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/17005?format=api", "purl": "pkg:pypi/pydantic@1.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/17004?format=api", "purl": "pkg:pypi/pydantic@1.7.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.7.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/17003?format=api", "purl": "pkg:pypi/pydantic@1.8.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.8.2" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/373796?format=api", "purl": "pkg:alpm/archlinux/python-pydantic@1.8.1-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/python-pydantic@1.8.1-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/16924?format=api", "purl": "pkg:pypi/pydantic@0.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16925?format=api", "purl": "pkg:pypi/pydantic@0.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/16926?format=api", "purl": "pkg:pypi/pydantic@0.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/16927?format=api", "purl": "pkg:pypi/pydantic@0.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/16928?format=api", "purl": "pkg:pypi/pydantic@0.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/16929?format=api", "purl": "pkg:pypi/pydantic@0.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/16930?format=api", "purl": "pkg:pypi/pydantic@0.0.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.0.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/16931?format=api", "purl": "pkg:pypi/pydantic@0.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/16932?format=api", "purl": "pkg:pypi/pydantic@0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16933?format=api", "purl": "pkg:pypi/pydantic@0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/16934?format=api", "purl": "pkg:pypi/pydantic@0.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16935?format=api", "purl": "pkg:pypi/pydantic@0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/16936?format=api", "purl": "pkg:pypi/pydantic@0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/16937?format=api", "purl": "pkg:pypi/pydantic@0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/16938?format=api", "purl": "pkg:pypi/pydantic@0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/16939?format=api", "purl": "pkg:pypi/pydantic@0.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16940?format=api", "purl": "pkg:pypi/pydantic@0.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/16941?format=api", "purl": "pkg:pypi/pydantic@0.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/16942?format=api", "purl": "pkg:pypi/pydantic@0.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/16943?format=api", "purl": "pkg:pypi/pydantic@0.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/16944?format=api", "purl": "pkg:pypi/pydantic@0.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16945?format=api", "purl": "pkg:pypi/pydantic@0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/16946?format=api", "purl": "pkg:pypi/pydantic@0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/16947?format=api", "purl": "pkg:pypi/pydantic@0.9.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.9.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16948?format=api", "purl": "pkg:pypi/pydantic@0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/16949?format=api", "purl": "pkg:pypi/pydantic@0.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/16950?format=api", "purl": "pkg:pypi/pydantic@0.11.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.11.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16951?format=api", "purl": "pkg:pypi/pydantic@0.11.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.11.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/16952?format=api", "purl": "pkg:pypi/pydantic@0.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/16953?format=api", "purl": "pkg:pypi/pydantic@0.12.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.12.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16954?format=api", "purl": "pkg:pypi/pydantic@0.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/16955?format=api", "purl": "pkg:pypi/pydantic@0.13.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.13.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16956?format=api", "purl": "pkg:pypi/pydantic@0.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/16957?format=api", "purl": "pkg:pypi/pydantic@0.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/16958?format=api", "purl": "pkg:pypi/pydantic@0.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/16959?format=api", "purl": "pkg:pypi/pydantic@0.16.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.16.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16960?format=api", "purl": "pkg:pypi/pydantic@0.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.17" }, { "url": "http://public2.vulnerablecode.io/api/packages/16961?format=api", "purl": "pkg:pypi/pydantic@0.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/16962?format=api", "purl": "pkg:pypi/pydantic@0.18.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.18.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16963?format=api", "purl": "pkg:pypi/pydantic@0.18.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.18.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/16964?format=api", "purl": "pkg:pypi/pydantic@0.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/16965?format=api", "purl": "pkg:pypi/pydantic@0.20a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.20a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16966?format=api", "purl": "pkg:pypi/pydantic@0.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/16967?format=api", "purl": "pkg:pypi/pydantic@0.20.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.20.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16968?format=api", "purl": "pkg:pypi/pydantic@0.21", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.21" }, { "url": "http://public2.vulnerablecode.io/api/packages/16969?format=api", "purl": "pkg:pypi/pydantic@0.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.22" }, { "url": "http://public2.vulnerablecode.io/api/packages/16970?format=api", "purl": "pkg:pypi/pydantic@0.23", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.23" }, { "url": "http://public2.vulnerablecode.io/api/packages/16971?format=api", "purl": "pkg:pypi/pydantic@0.24", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.24" }, { "url": "http://public2.vulnerablecode.io/api/packages/16972?format=api", "purl": "pkg:pypi/pydantic@0.25", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.25" }, { "url": "http://public2.vulnerablecode.io/api/packages/16973?format=api", "purl": "pkg:pypi/pydantic@0.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/16974?format=api", "purl": "pkg:pypi/pydantic@0.27a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.27a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16975?format=api", "purl": "pkg:pypi/pydantic@0.27", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.27" }, { "url": "http://public2.vulnerablecode.io/api/packages/16976?format=api", "purl": "pkg:pypi/pydantic@0.28", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.28" }, { "url": "http://public2.vulnerablecode.io/api/packages/16977?format=api", "purl": "pkg:pypi/pydantic@0.29", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.29" }, { "url": "http://public2.vulnerablecode.io/api/packages/16978?format=api", "purl": "pkg:pypi/pydantic@0.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/16979?format=api", "purl": "pkg:pypi/pydantic@0.30.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.30.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16980?format=api", "purl": "pkg:pypi/pydantic@0.31", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.31" }, { "url": "http://public2.vulnerablecode.io/api/packages/16981?format=api", "purl": "pkg:pypi/pydantic@0.31.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.31.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16982?format=api", "purl": "pkg:pypi/pydantic@0.32", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.32" }, { "url": "http://public2.vulnerablecode.io/api/packages/16983?format=api", "purl": "pkg:pypi/pydantic@0.32.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.32.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16984?format=api", "purl": "pkg:pypi/pydantic@0.32.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@0.32.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/16985?format=api", "purl": "pkg:pypi/pydantic@1.0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16986?format=api", "purl": "pkg:pypi/pydantic@1.0b2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.0b2" }, { "url": "http://public2.vulnerablecode.io/api/packages/16987?format=api", "purl": "pkg:pypi/pydantic@1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/16988?format=api", "purl": "pkg:pypi/pydantic@1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16989?format=api", "purl": "pkg:pypi/pydantic@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16990?format=api", "purl": "pkg:pypi/pydantic@1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/16991?format=api", "purl": "pkg:pypi/pydantic@1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/16992?format=api", "purl": "pkg:pypi/pydantic@1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/16993?format=api", "purl": "pkg:pypi/pydantic@1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/16994?format=api", "purl": "pkg:pypi/pydantic@1.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16995?format=api", "purl": "pkg:pypi/pydantic@1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/16996?format=api", "purl": "pkg:pypi/pydantic@1.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16997?format=api", "purl": "pkg:pypi/pydantic@1.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/16998?format=api", "purl": "pkg:pypi/pydantic@1.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/16999?format=api", "purl": "pkg:pypi/pydantic@1.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.7.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/17000?format=api", "purl": "pkg:pypi/pydantic@1.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.7.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/17001?format=api", "purl": "pkg:pypi/pydantic@1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/17002?format=api", "purl": "pkg:pypi/pydantic@1.8.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ykv-qpec-9bey" }, { "vulnerability": "VCID-y2t2-p4g3-xfdf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/pydantic@1.8.1" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29510", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20336", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20145", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20071", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20157", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.2019", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20196", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20386", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20431", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20401", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20343", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20262", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20537", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20478", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20317", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20321", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20319", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.2033", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29510" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29510", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29510" }, { "reference_url": "https://github.com/pydantic/pydantic/commit/1c24f1d74ba95ea985b50bdc001ce96c813229aa", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pydantic/pydantic/commit/1c24f1d74ba95ea985b50bdc001ce96c813229aa" }, { "reference_url": "https://github.com/pydantic/pydantic/commit/80e0dd3f752bef145dce12f160d262bb40ec8d47", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pydantic/pydantic/commit/80e0dd3f752bef145dce12f160d262bb40ec8d47" }, { "reference_url": "https://github.com/pydantic/pydantic/commit/bdde15b7b947c94ca00fd6eb92da8db390a13520", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pydantic/pydantic/commit/bdde15b7b947c94ca00fd6eb92da8db390a13520" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/pydantic/PYSEC-2021-47.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/pydantic/PYSEC-2021-47.yaml" }, { "reference_url": "https://github.com/samuelcolvin/pydantic/commit/7e83fdd2563ffac081db7ecdf1affa65ef38c468", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/samuelcolvin/pydantic/commit/7e83fdd2563ffac081db7ecdf1affa65ef38c468" }, { "reference_url": "https://github.com/samuelcolvin/pydantic/security/advisories/GHSA-5jqp-qgf6-3pvh", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/samuelcolvin/pydantic/security/advisories/GHSA-5jqp-qgf6-3pvh" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S2HT266L6Q7H6ICP7DFGXOGBJHNNKMKB", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S2HT266L6Q7H6ICP7DFGXOGBJHNNKMKB" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UEFWM7DYKD2ZHE7R5YT5EQWJPV4ZKYRB", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UEFWM7DYKD2ZHE7R5YT5EQWJPV4ZKYRB" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UMKAJX4O6IGBBCE32CO2G7PZQCCQSBLV", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UMKAJX4O6IGBBCE32CO2G7PZQCCQSBLV" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29510", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29510" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988480", "reference_id": "988480", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988480" }, { "reference_url": "https://security.archlinux.org/ASA-202105-24", "reference_id": "ASA-202105-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202105-24" }, { "reference_url": "https://security.archlinux.org/AVG-1951", "reference_id": "AVG-1951", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1951" }, { "reference_url": "https://github.com/advisories/GHSA-5jqp-qgf6-3pvh", "reference_id": "GHSA-5jqp-qgf6-3pvh", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5jqp-qgf6-3pvh" }, { "reference_url": "https://usn.ubuntu.com/6553-1/", "reference_id": "USN-6553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6553-1/" } ], "weaknesses": [ { "cwe_id": 835, "name": "Loop with Unreachable Exit Condition ('Infinite Loop')", "description": "The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." } ], "exploits": [], "severity_range_score": "3.3 - 6.9", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y2t2-p4g3-xfdf" }