Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-977s-a2ue-w7eu
SummaryDouble-free vulnerability in CVS 1.11.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed Directory request, as demonstrated by bypassing write checks to execute Update-prog and Checkin-prog commands.
Aliases
0
alias CVE-2003-0015
Fixed_packages
0
url pkg:deb/debian/cvs@1.11.2-5.1?distro=trixie
purl pkg:deb/debian/cvs@1.11.2-5.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@1.11.2-5.1%3Fdistro=trixie
1
url pkg:deb/debian/cvs@1:1.12.9-13
purl pkg:deb/debian/cvs@1:1.12.9-13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-md15-esne-abbk
1
vulnerability VCID-ncr9-d9xr-m3dx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@1:1.12.9-13
2
url pkg:deb/debian/cvs@2:1.12.13%2Breal-28?distro=trixie
purl pkg:deb/debian/cvs@2:1.12.13%2Breal-28?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@2:1.12.13%252Breal-28%3Fdistro=trixie
3
url pkg:deb/debian/cvs@2:1.12.13%2Breal-28%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/cvs@2:1.12.13%2Breal-28%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@2:1.12.13%252Breal-28%252Bdeb12u1%3Fdistro=trixie
4
url pkg:deb/debian/cvs@2:1.12.13%2Breal-30?distro=trixie
purl pkg:deb/debian/cvs@2:1.12.13%2Breal-30?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@2:1.12.13%252Breal-30%3Fdistro=trixie
5
url pkg:deb/debian/cvs@2:1.12.13%2Breal-31?distro=trixie
purl pkg:deb/debian/cvs@2:1.12.13%2Breal-31?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@2:1.12.13%252Breal-31%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/cvs@1.9.26-5
purl pkg:deb/debian/cvs@1.9.26-5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hak-5z95-juhf
1
vulnerability VCID-76pq-jctn-abc2
2
vulnerability VCID-782a-mdwz-9yat
3
vulnerability VCID-7zw8-dpbr-jffc
4
vulnerability VCID-977s-a2ue-w7eu
5
vulnerability VCID-ajrj-x152-pfd4
6
vulnerability VCID-bjjf-mz6r-qqg4
7
vulnerability VCID-dgrx-z1xw-jyf6
8
vulnerability VCID-exgk-1th6-53bu
9
vulnerability VCID-ge2e-bdx5-k3fg
10
vulnerability VCID-k37k-771k-6uby
11
vulnerability VCID-md15-esne-abbk
12
vulnerability VCID-ncr9-d9xr-m3dx
13
vulnerability VCID-nqw3-r34n-zbe6
14
vulnerability VCID-pd12-r3uh-huf4
15
vulnerability VCID-pe4t-1ga5-nkhk
16
vulnerability VCID-y4uw-uc9k-jfdu
17
vulnerability VCID-yyyb-3sfs-13af
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@1.9.26-5
1
url pkg:deb/debian/cvs@1.10.7-1.99.slink.y2k.1
purl pkg:deb/debian/cvs@1.10.7-1.99.slink.y2k.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hak-5z95-juhf
1
vulnerability VCID-76pq-jctn-abc2
2
vulnerability VCID-782a-mdwz-9yat
3
vulnerability VCID-7zw8-dpbr-jffc
4
vulnerability VCID-977s-a2ue-w7eu
5
vulnerability VCID-ajrj-x152-pfd4
6
vulnerability VCID-bjjf-mz6r-qqg4
7
vulnerability VCID-dgrx-z1xw-jyf6
8
vulnerability VCID-exgk-1th6-53bu
9
vulnerability VCID-ge2e-bdx5-k3fg
10
vulnerability VCID-k37k-771k-6uby
11
vulnerability VCID-md15-esne-abbk
12
vulnerability VCID-ncr9-d9xr-m3dx
13
vulnerability VCID-nqw3-r34n-zbe6
14
vulnerability VCID-pd12-r3uh-huf4
15
vulnerability VCID-pe4t-1ga5-nkhk
16
vulnerability VCID-y4uw-uc9k-jfdu
17
vulnerability VCID-yyyb-3sfs-13af
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@1.10.7-1.99.slink.y2k.1
2
url pkg:deb/debian/cvs@1.10.7-9
purl pkg:deb/debian/cvs@1.10.7-9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hak-5z95-juhf
1
vulnerability VCID-76pq-jctn-abc2
2
vulnerability VCID-782a-mdwz-9yat
3
vulnerability VCID-7zw8-dpbr-jffc
4
vulnerability VCID-977s-a2ue-w7eu
5
vulnerability VCID-ajrj-x152-pfd4
6
vulnerability VCID-bjjf-mz6r-qqg4
7
vulnerability VCID-dgrx-z1xw-jyf6
8
vulnerability VCID-exgk-1th6-53bu
9
vulnerability VCID-ge2e-bdx5-k3fg
10
vulnerability VCID-k37k-771k-6uby
11
vulnerability VCID-md15-esne-abbk
12
vulnerability VCID-ncr9-d9xr-m3dx
13
vulnerability VCID-nqw3-r34n-zbe6
14
vulnerability VCID-pd12-r3uh-huf4
15
vulnerability VCID-pe4t-1ga5-nkhk
16
vulnerability VCID-y4uw-uc9k-jfdu
17
vulnerability VCID-yyyb-3sfs-13af
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@1.10.7-9
3
url pkg:deb/debian/cvs@1.11.1p1debian-10
purl pkg:deb/debian/cvs@1.11.1p1debian-10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4hak-5z95-juhf
1
vulnerability VCID-76pq-jctn-abc2
2
vulnerability VCID-782a-mdwz-9yat
3
vulnerability VCID-7zw8-dpbr-jffc
4
vulnerability VCID-977s-a2ue-w7eu
5
vulnerability VCID-ajrj-x152-pfd4
6
vulnerability VCID-bjjf-mz6r-qqg4
7
vulnerability VCID-dgrx-z1xw-jyf6
8
vulnerability VCID-exgk-1th6-53bu
9
vulnerability VCID-ge2e-bdx5-k3fg
10
vulnerability VCID-k37k-771k-6uby
11
vulnerability VCID-md15-esne-abbk
12
vulnerability VCID-ncr9-d9xr-m3dx
13
vulnerability VCID-nqw3-r34n-zbe6
14
vulnerability VCID-pd12-r3uh-huf4
15
vulnerability VCID-pe4t-1ga5-nkhk
16
vulnerability VCID-y4uw-uc9k-jfdu
17
vulnerability VCID-yyyb-3sfs-13af
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cvs@1.11.1p1debian-10
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0015.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0015.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2003-0015
reference_id
reference_type
scores
0
value 0.37007
scoring_system epss
scoring_elements 0.9726
published_at 2026-06-11T12:55:00Z
1
value 0.37007
scoring_system epss
scoring_elements 0.97268
published_at 2026-06-12T12:55:00Z
2
value 0.37007
scoring_system epss
scoring_elements 0.97269
published_at 2026-06-13T12:55:00Z
3
value 0.37007
scoring_system epss
scoring_elements 0.9727
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2003-0015
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0015
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0015
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1616934
reference_id 1616934
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1616934
4
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/22187.txt
reference_id CVE-2003-0015;OSVDB-3227
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/22187.txt
5
reference_url https://www.securityfocus.com/bid/6650/info
reference_id CVE-2003-0015;OSVDB-3227
reference_type exploit
scores
url https://www.securityfocus.com/bid/6650/info
6
reference_url https://access.redhat.com/errata/RHSA-2003:012
reference_id RHSA-2003:012
reference_type
scores
url https://access.redhat.com/errata/RHSA-2003:012
7
reference_url https://access.redhat.com/errata/RHSA-2003:013
reference_id RHSA-2003:013
reference_type
scores
url https://access.redhat.com/errata/RHSA-2003:013
Weaknesses
Exploits
0
date_added 2003-01-20
description CVS 1.11.x - Directory Request Double-Free Heap Corruption
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2003-01-20
exploit_type remote
platform linux
source_date_updated 2012-10-28
data_source Exploit-DB
source_url https://www.securityfocus.com/bid/6650/info
Severity_range_scorenull
Exploitability2.0
Weighted_severity0.3
Risk_score0.6
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-977s-a2ue-w7eu