Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/horizon@3:14.0.2-3%2Bdeb10u2
Typedeb
Namespacedebian
Namehorizon
Version3:14.0.2-3+deb10u2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version3:18.6.2-5+deb11u2
Latest_non_vulnerable_version3:18.6.2-5+deb11u2
Affected_by_vulnerabilities
0
url VCID-bz2p-kcg8-nuc6
vulnerability_id VCID-bz2p-kcg8-nuc6
summary An issue was discovered in OpenStack Horizon before 15.3.2, 16.x before 16.2.1, 17.x and 18.x before 18.3.3, 18.4.x, and 18.5.x. There is a lack of validation of the "next" parameter, which would allow someone to supply a malicious URL in Horizon that can cause an automatic redirect to the provided malicious URL.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29565.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29565.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-29565
reference_id
reference_type
scores
0
value 0.0071
scoring_system epss
scoring_elements 0.72167
published_at 2026-04-01T12:55:00Z
1
value 0.0071
scoring_system epss
scoring_elements 0.72255
published_at 2026-04-16T12:55:00Z
2
value 0.0071
scoring_system epss
scoring_elements 0.72212
published_at 2026-04-13T12:55:00Z
3
value 0.0071
scoring_system epss
scoring_elements 0.72226
published_at 2026-04-12T12:55:00Z
4
value 0.0071
scoring_system epss
scoring_elements 0.72172
published_at 2026-04-02T12:55:00Z
5
value 0.0071
scoring_system epss
scoring_elements 0.72243
published_at 2026-04-11T12:55:00Z
6
value 0.0071
scoring_system epss
scoring_elements 0.72219
published_at 2026-04-09T12:55:00Z
7
value 0.0071
scoring_system epss
scoring_elements 0.72207
published_at 2026-04-08T12:55:00Z
8
value 0.0071
scoring_system epss
scoring_elements 0.72193
published_at 2026-04-04T12:55:00Z
9
value 0.0071
scoring_system epss
scoring_elements 0.7217
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-29565
2
reference_url https://bugs.launchpad.net/horizon/+bug/1865026
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugs.launchpad.net/horizon/+bug/1865026
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29565
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29565
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/openstack/horizon
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon
6
reference_url https://github.com/openstack/horizon/commit/252467100f75587e18df9c43ed5802ee8f0017fa
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/252467100f75587e18df9c43ed5802ee8f0017fa
7
reference_url https://github.com/openstack/horizon/commit/6c208edf323ced07b15ec4bc3879bddb91d398bc
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/6c208edf323ced07b15ec4bc3879bddb91d398bc
8
reference_url https://github.com/openstack/horizon/commit/9e0e333ab5277b6c396f602862ff90398cb0242b
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/9e0e333ab5277b6c396f602862ff90398cb0242b
9
reference_url https://github.com/openstack/horizon/commit/baa370f84332ad41502daea29a551705696f4421
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/baa370f84332ad41502daea29a551705696f4421
10
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/horizon/PYSEC-2020-45.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/horizon/PYSEC-2020-45.yaml
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-29565
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-29565
12
reference_url https://review.opendev.org/c/openstack/horizon/+/758841
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/c/openstack/horizon/+/758841
13
reference_url https://review.opendev.org/c/openstack/horizon/+/758841/
reference_id
reference_type
scores
url https://review.opendev.org/c/openstack/horizon/+/758841/
14
reference_url https://review.opendev.org/c/openstack/horizon/+/758843
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/c/openstack/horizon/+/758843
15
reference_url https://review.opendev.org/c/openstack/horizon/+/758843/
reference_id
reference_type
scores
url https://review.opendev.org/c/openstack/horizon/+/758843/
16
reference_url https://security.openstack.org/ossa/OSSA-2020-008.html
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://security.openstack.org/ossa/OSSA-2020-008.html
17
reference_url https://www.debian.org/security/2020/dsa-4820
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2020/dsa-4820
18
reference_url http://www.openwall.com/lists/oss-security/2020/12/08/2
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2020/12/08/2
19
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1811510
reference_id 1811510
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1811510
20
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976872
reference_id 976872
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976872
21
reference_url https://github.com/advisories/GHSA-f8fh-xp28-q59m
reference_id GHSA-f8fh-xp28-q59m
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f8fh-xp28-q59m
22
reference_url https://access.redhat.com/errata/RHSA-2020:5411
reference_id RHSA-2020:5411
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:5411
23
reference_url https://access.redhat.com/errata/RHSA-2020:5572
reference_id RHSA-2020:5572
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:5572
24
reference_url https://usn.ubuntu.com/4675-1/
reference_id USN-4675-1
reference_type
scores
url https://usn.ubuntu.com/4675-1/
fixed_packages
0
url pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2
purl pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:18.6.2-5%252Bdeb11u2
aliases CVE-2020-29565, GHSA-f8fh-xp28-q59m, PYSEC-2020-45
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bz2p-kcg8-nuc6
1
url VCID-jg5v-wx6x-g3ah
vulnerability_id VCID-jg5v-wx6x-g3ah
summary Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the success_url parameter.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-45582
reference_id
reference_type
scores
0
value 0.00286
scoring_system epss
scoring_elements 0.52029
published_at 2026-04-02T12:55:00Z
1
value 0.00286
scoring_system epss
scoring_elements 0.52132
published_at 2026-04-16T12:55:00Z
2
value 0.00286
scoring_system epss
scoring_elements 0.52092
published_at 2026-04-13T12:55:00Z
3
value 0.00286
scoring_system epss
scoring_elements 0.52107
published_at 2026-04-12T12:55:00Z
4
value 0.00286
scoring_system epss
scoring_elements 0.52124
published_at 2026-04-11T12:55:00Z
5
value 0.00286
scoring_system epss
scoring_elements 0.52072
published_at 2026-04-09T12:55:00Z
6
value 0.00286
scoring_system epss
scoring_elements 0.52075
published_at 2026-04-08T12:55:00Z
7
value 0.00286
scoring_system epss
scoring_elements 0.52021
published_at 2026-04-07T12:55:00Z
8
value 0.00286
scoring_system epss
scoring_elements 0.52055
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-45582
1
reference_url https://bugs.launchpad.net/horizon/+bug/1982676
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugs.launchpad.net/horizon/+bug/1982676
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45582
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45582
3
reference_url https://github.com/openstack/horizon
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon
4
reference_url https://github.com/openstack/horizon/blob/master/horizon/workflows/views.py#L96-L102
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/blob/master/horizon/workflows/views.py#L96-L102
5
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/horizon/PYSEC-2023-153.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/horizon/PYSEC-2023-153.yaml
6
reference_url https://lists.debian.org/debian-lts-announce/2023/11/msg00033.html
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2023/11/msg00033.html
7
reference_url https://lists.debian.org/debian-lts-announce/2023/12/msg00000.html
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2023/12/msg00000.html
8
reference_url https://opendev.org/openstack/horizon/commit/79d139594290779b2f74ca894332aa7f2f7e4735
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://opendev.org/openstack/horizon/commit/79d139594290779b2f74ca894332aa7f2f7e4735
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-45582
reference_id CVE-2022-45582
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-45582
10
reference_url https://github.com/advisories/GHSA-5pv6-rprw-82wv
reference_id GHSA-5pv6-rprw-82wv
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5pv6-rprw-82wv
fixed_packages
0
url pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2
purl pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:18.6.2-5%252Bdeb11u2
aliases CVE-2022-45582, GHSA-5pv6-rprw-82wv, PYSEC-2023-153
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jg5v-wx6x-g3ah
Fixing_vulnerabilities
0
url VCID-bz2p-kcg8-nuc6
vulnerability_id VCID-bz2p-kcg8-nuc6
summary An issue was discovered in OpenStack Horizon before 15.3.2, 16.x before 16.2.1, 17.x and 18.x before 18.3.3, 18.4.x, and 18.5.x. There is a lack of validation of the "next" parameter, which would allow someone to supply a malicious URL in Horizon that can cause an automatic redirect to the provided malicious URL.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29565.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29565.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-29565
reference_id
reference_type
scores
0
value 0.0071
scoring_system epss
scoring_elements 0.72167
published_at 2026-04-01T12:55:00Z
1
value 0.0071
scoring_system epss
scoring_elements 0.72255
published_at 2026-04-16T12:55:00Z
2
value 0.0071
scoring_system epss
scoring_elements 0.72212
published_at 2026-04-13T12:55:00Z
3
value 0.0071
scoring_system epss
scoring_elements 0.72226
published_at 2026-04-12T12:55:00Z
4
value 0.0071
scoring_system epss
scoring_elements 0.72172
published_at 2026-04-02T12:55:00Z
5
value 0.0071
scoring_system epss
scoring_elements 0.72243
published_at 2026-04-11T12:55:00Z
6
value 0.0071
scoring_system epss
scoring_elements 0.72219
published_at 2026-04-09T12:55:00Z
7
value 0.0071
scoring_system epss
scoring_elements 0.72207
published_at 2026-04-08T12:55:00Z
8
value 0.0071
scoring_system epss
scoring_elements 0.72193
published_at 2026-04-04T12:55:00Z
9
value 0.0071
scoring_system epss
scoring_elements 0.7217
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-29565
2
reference_url https://bugs.launchpad.net/horizon/+bug/1865026
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugs.launchpad.net/horizon/+bug/1865026
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29565
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29565
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/openstack/horizon
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon
6
reference_url https://github.com/openstack/horizon/commit/252467100f75587e18df9c43ed5802ee8f0017fa
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/252467100f75587e18df9c43ed5802ee8f0017fa
7
reference_url https://github.com/openstack/horizon/commit/6c208edf323ced07b15ec4bc3879bddb91d398bc
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/6c208edf323ced07b15ec4bc3879bddb91d398bc
8
reference_url https://github.com/openstack/horizon/commit/9e0e333ab5277b6c396f602862ff90398cb0242b
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/9e0e333ab5277b6c396f602862ff90398cb0242b
9
reference_url https://github.com/openstack/horizon/commit/baa370f84332ad41502daea29a551705696f4421
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/baa370f84332ad41502daea29a551705696f4421
10
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/horizon/PYSEC-2020-45.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/horizon/PYSEC-2020-45.yaml
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-29565
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-29565
12
reference_url https://review.opendev.org/c/openstack/horizon/+/758841
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/c/openstack/horizon/+/758841
13
reference_url https://review.opendev.org/c/openstack/horizon/+/758841/
reference_id
reference_type
scores
url https://review.opendev.org/c/openstack/horizon/+/758841/
14
reference_url https://review.opendev.org/c/openstack/horizon/+/758843
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/c/openstack/horizon/+/758843
15
reference_url https://review.opendev.org/c/openstack/horizon/+/758843/
reference_id
reference_type
scores
url https://review.opendev.org/c/openstack/horizon/+/758843/
16
reference_url https://security.openstack.org/ossa/OSSA-2020-008.html
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://security.openstack.org/ossa/OSSA-2020-008.html
17
reference_url https://www.debian.org/security/2020/dsa-4820
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2020/dsa-4820
18
reference_url http://www.openwall.com/lists/oss-security/2020/12/08/2
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2020/12/08/2
19
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1811510
reference_id 1811510
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1811510
20
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976872
reference_id 976872
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976872
21
reference_url https://github.com/advisories/GHSA-f8fh-xp28-q59m
reference_id GHSA-f8fh-xp28-q59m
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f8fh-xp28-q59m
22
reference_url https://access.redhat.com/errata/RHSA-2020:5411
reference_id RHSA-2020:5411
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:5411
23
reference_url https://access.redhat.com/errata/RHSA-2020:5572
reference_id RHSA-2020:5572
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:5572
24
reference_url https://usn.ubuntu.com/4675-1/
reference_id USN-4675-1
reference_type
scores
url https://usn.ubuntu.com/4675-1/
fixed_packages
0
url pkg:deb/debian/horizon@3:14.0.2-3%2Bdeb10u2
purl pkg:deb/debian/horizon@3:14.0.2-3%2Bdeb10u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bz2p-kcg8-nuc6
1
vulnerability VCID-jg5v-wx6x-g3ah
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:14.0.2-3%252Bdeb10u2
1
url pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2
purl pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:18.6.2-5%252Bdeb11u2
aliases CVE-2020-29565, GHSA-f8fh-xp28-q59m, PYSEC-2020-45
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bz2p-kcg8-nuc6
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:14.0.2-3%252Bdeb10u2