Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-8rsd-tr7r-1qcq
Summary
Firefox user Sijie Xia reported that if a user
explicitly removes the trust for extended validation (EV) capable root
certificates in the certificate manager, the change is not properly used when
validating EV certificates, causing the setting to be ignored. This removes the
ability of users to explicitly untrust root certificates from specific
certificate authorities.
This flaw does not affect certificates that are not extended
validation certificates. All other certificate validation checks do occur, the
error is the assumption that if Mozilla trusted the certificate, the user would
also.
Aliases
0
alias CVE-2013-6673
Fixed_packages
0
url pkg:mozilla/Firefox@26.0.0
purl pkg:mozilla/Firefox@26.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@26.0.0
1
url pkg:mozilla/Firefox%20ESR@24.2.0
purl pkg:mozilla/Firefox%20ESR@24.2.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@24.2.0
2
url pkg:mozilla/Seamonkey@2.23.0
purl pkg:mozilla/Seamonkey@2.23.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Seamonkey@2.23.0
3
url pkg:mozilla/Thunderbird@24.2.0
purl pkg:mozilla/Thunderbird@24.2.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@24.2.0
Affected_packages
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6673
reference_id CVE-2013-6673
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6673
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2013-113
reference_id mfsa2013-113
reference_type
scores
0
value none
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2013-113
Weaknesses
Exploits
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-8rsd-tr7r-1qcq