Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/dhcp@12:4.1.1-43.P1.el6_6?arch=2

Type rpm

Namespace redhat

Name dhcp

Version 12:4.1.1-43.P1.el6_6

Qualifiers

arch	2

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-r42j-jg5s-auda

vulnerability_id

VCID-r42j-jg5s-auda

summary

dhcp: Command injection vulnerability in the DHCP client NetworkManager integration script

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1111.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1111.json

reference_url	https://access.redhat.com/security/vulnerabilities/3442151
reference_id
reference_type
scores
url	https://access.redhat.com/security/vulnerabilities/3442151

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-1111

reference_id

reference_type

scores

value	0.88233
scoring_system	epss
scoring_elements	0.99496
published_at	2026-04-21T12:55:00Z

value	0.89183
scoring_system	epss
scoring_elements	0.99529
published_at	2026-04-02T12:55:00Z

value	0.89183
scoring_system	epss
scoring_elements	0.99537
published_at	2026-04-16T12:55:00Z

value	0.89183
scoring_system	epss
scoring_elements	0.99538
published_at	2026-04-18T12:55:00Z

value	0.89183
scoring_system	epss
scoring_elements	0.9953
published_at	2026-04-04T12:55:00Z

value	0.89183
scoring_system	epss
scoring_elements	0.99531
published_at	2026-04-07T12:55:00Z

value	0.89183
scoring_system	epss
scoring_elements	0.99532
published_at	2026-04-08T12:55:00Z

value	0.89183
scoring_system	epss
scoring_elements	0.99533
published_at	2026-04-09T12:55:00Z

value	0.89183
scoring_system	epss
scoring_elements	0.99534
published_at	2026-04-12T12:55:00Z

value	0.89183
scoring_system	epss
scoring_elements	0.99535
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-1111

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1111
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1111

reference_url	https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
reference_id
reference_type
scores
url	https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CDCLLCHYFFXW354HMB5QBXOQOY5BH2EJ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CDCLLCHYFFXW354HMB5QBXOQOY5BH2EJ/

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IDJA4QRR74TMXW34Q3DYYFPVBYRTJBI7/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IDJA4QRR74TMXW34Q3DYYFPVBYRTJBI7/

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QMTTB54QNTPD2SK6UL32EVQHMZP6BUUD/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QMTTB54QNTPD2SK6UL32EVQHMZP6BUUD/

reference_url	https://www.exploit-db.com/exploits/44652/
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/44652/

reference_url	https://www.exploit-db.com/exploits/44890/
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/44890/

reference_url	https://www.tenable.com/security/tns-2018-10
reference_id
reference_type
scores
url	https://www.tenable.com/security/tns-2018-10

reference_url	http://www.securityfocus.com/bid/104195
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/104195

reference_url	http://www.securitytracker.com/id/1040912
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1040912

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1567974
reference_id	1567974
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1567974

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:enterprise_virtualization:4.0:::::::*
reference_id	cpe:2.3:a:redhat:enterprise_virtualization:4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:enterprise_virtualization:4.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:enterprise_virtualization:4.2:::::::*
reference_id	cpe:2.3:a:redhat:enterprise_virtualization:4.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:enterprise_virtualization:4.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:enterprise_virtualization_host:4.0:::::::*
reference_id	cpe:2.3:a:redhat:enterprise_virtualization_host:4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:enterprise_virtualization_host:4.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:26:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:26:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:26:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:27:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:27:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:27:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:28:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:28:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.4:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:6.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.5:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:6.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.6:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:6.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.7:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:6.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.2:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:7.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.3:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:7.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.4:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:7.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.5:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:7.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*

reference_url	https://github.com/kkirsche/CVE-2018-1111/blob/e889762d796a8a2a8cb574b173e6cb215befac1a/main.py
reference_id	CVE-2018-1111
reference_type	exploit
scores
url	https://github.com/kkirsche/CVE-2018-1111/blob/e889762d796a8a2a8cb574b173e6cb215befac1a/main.py

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/44652.py
reference_id	CVE-2018-1111
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/44652.py

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/44890.rb
reference_id	CVE-2018-1111
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/44890.rb

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-1111

reference_id

CVE-2018-1111

reference_type

scores

value	7.9
scoring_system	cvssv2
scoring_elements	AV:A/AC:M/Au:N/C:C/I:C/A:C

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-1111

reference_url	https://raw.githubusercontent.com/rapid7/metasploit-framework/c3c6bc19da7d63c5fd3f6d87fee058ce4b4e8b8f/modules/exploits/unix/dhcp/rhel_dhcp_client_command_injection.rb
reference_id	CVE-2018-1111
reference_type	exploit
scores
url	https://raw.githubusercontent.com/rapid7/metasploit-framework/c3c6bc19da7d63c5fd3f6d87fee058ce4b4e8b8f/modules/exploits/unix/dhcp/rhel_dhcp_client_command_injection.rb

reference_url	https://access.redhat.com/errata/RHSA-2018:1453
reference_id	RHSA-2018:1453
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1453

reference_url	https://access.redhat.com/errata/RHSA-2018:1454
reference_id	RHSA-2018:1454
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1454

reference_url	https://access.redhat.com/errata/RHSA-2018:1455
reference_id	RHSA-2018:1455
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1455

reference_url	https://access.redhat.com/errata/RHSA-2018:1456
reference_id	RHSA-2018:1456
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1456

reference_url	https://access.redhat.com/errata/RHSA-2018:1457
reference_id	RHSA-2018:1457
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1457

reference_url	https://access.redhat.com/errata/RHSA-2018:1458
reference_id	RHSA-2018:1458
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1458

reference_url	https://access.redhat.com/errata/RHSA-2018:1459
reference_id	RHSA-2018:1459
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1459

reference_url	https://access.redhat.com/errata/RHSA-2018:1460
reference_id	RHSA-2018:1460
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1460

reference_url	https://access.redhat.com/errata/RHSA-2018:1461
reference_id	RHSA-2018:1461
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1461

reference_url	https://access.redhat.com/errata/RHSA-2018:1524
reference_id	RHSA-2018:1524
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:1524

fixed_packages

aliases

CVE-2018-1111

risk_score

10.0

exploitability

2.0

weighted_severity

7.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-r42j-jg5s-auda

Fixing_vulnerabilities

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/dhcp@12:4.1.1-43.P1.el6_6%3Farch=2

Package Instance