Django REST framework
Api Root
Package List
Package Instance
Format
json
api
admin
Package Instance
Lookup for vulnerable packages by Package URL.
Purl
pkg:pypi/radicale@1.1.2
Type
pypi
Namespace
Name
radicale
Version
1.1.2
Qualifiers
Subpath
Is_vulnerable
false
Next_non_vulnerable_version
2.0.0rc2
Latest_non_vulnerable_version
2.0.0rc2
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url
VCID-dw4s-1un9-3qg1
vulnerability_id
VCID-dw4s-1un9-3qg1
summary
Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing oracles and simple brute-force attacks when using the htpasswd authentication method.
references
0
reference_url
https://bugs.debian.org/861514
reference_id
reference_type
scores
url
https://bugs.debian.org/861514
1
reference_url
https://github.com/Kozea/Radicale
reference_id
reference_type
scores
url
https://github.com/Kozea/Radicale
2
reference_url
https://github.com/Kozea/Radicale/blob/1.1.2/NEWS.rst
reference_id
reference_type
scores
url
https://github.com/Kozea/Radicale/blob/1.1.2/NEWS.rst
3
reference_url
https://github.com/Kozea/Radicale/commit/059ba8dec1f22ccbeab837e288b3833a099cee2d
reference_id
reference_type
scores
url
https://github.com/Kozea/Radicale/commit/059ba8dec1f22ccbeab837e288b3833a099cee2d
4
reference_url
https://github.com/Kozea/Radicale/commit/190b1dd795f0c552a4992445a231da760211183b
reference_id
reference_type
scores
url
https://github.com/Kozea/Radicale/commit/190b1dd795f0c552a4992445a231da760211183b
5
reference_url
https://github.com/pypa/advisory-database/tree/main/vulns/radicale/PYSEC-2017-102.yaml
reference_id
reference_type
scores
url
https://github.com/pypa/advisory-database/tree/main/vulns/radicale/PYSEC-2017-102.yaml
6
reference_url
https://lists.debian.org/debian-lts-announce/2020/04/msg00019.html
reference_id
reference_type
scores
url
https://lists.debian.org/debian-lts-announce/2020/04/msg00019.html
7
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2017-8342
reference_id
reference_type
scores
url
https://nvd.nist.gov/vuln/detail/CVE-2017-8342
8
reference_url
https://pypi.org/project/radicale
reference_id
reference_type
scores
url
https://pypi.org/project/radicale
9
reference_url
https://github.com/advisories/GHSA-rpv4-63g3-9x23
reference_id
GHSA-rpv4-63g3-9x23
reference_type
scores
url
https://github.com/advisories/GHSA-rpv4-63g3-9x23
fixed_packages
0
url
pkg:pypi/radicale@1.1.2
purl
pkg:pypi/radicale@1.1.2
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/radicale@1.1.2
1
url
pkg:pypi/radicale@2.0.0rc2
purl
pkg:pypi/radicale@2.0.0rc2
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/radicale@2.0.0rc2
aliases
CVE-2017-8342, GHSA-rpv4-63g3-9x23, PYSEC-2017-102
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-dw4s-1un9-3qg1
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/radicale@1.1.2
×
Create
None
×
Edit
None