Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-2pn3-6xs3-nbcn

Summary The MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 might allow local users to cause a denial of service (daemon crash) via crafted SCARD_SET_ATTRIB message data, which is improperly demarshalled and triggers a buffer over-read, a related issue to CVE-2010-0407.

Aliases

alias	CVE-2009-4901

Fixed_packages

url	pkg:deb/debian/pcsc-lite@0?distro=trixie
purl	pkg:deb/debian/pcsc-lite@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcsc-lite@0%3Fdistro=trixie

url	pkg:deb/debian/pcsc-lite@1.9.1-1?distro=trixie
purl	pkg:deb/debian/pcsc-lite@1.9.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcsc-lite@1.9.1-1%3Fdistro=trixie

url	pkg:deb/debian/pcsc-lite@1.9.9-2?distro=trixie
purl	pkg:deb/debian/pcsc-lite@1.9.9-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcsc-lite@1.9.9-2%3Fdistro=trixie

url	pkg:deb/debian/pcsc-lite@2.3.3-1?distro=trixie
purl	pkg:deb/debian/pcsc-lite@2.3.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcsc-lite@2.3.3-1%3Fdistro=trixie

url	pkg:deb/debian/pcsc-lite@2.5.0-1?distro=trixie
purl	pkg:deb/debian/pcsc-lite@2.5.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcsc-lite@2.5.0-1%3Fdistro=trixie

url	pkg:deb/debian/pcsc-lite@2.5.1-1?distro=trixie
purl	pkg:deb/debian/pcsc-lite@2.5.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcsc-lite@2.5.1-1%3Fdistro=trixie

Affected_packages

url pkg:rpm/redhat/geronimo-specs@1.0-0.M4?arch=1jpp_10rh

purl pkg:rpm/redhat/geronimo-specs@1.0-0.M4?arch=1jpp_10rh

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/geronimo-specs@1.0-0.M4%3Farch=1jpp_10rh

url pkg:rpm/redhat/pcsc-lite@1.3.3-3?arch=el4

purl pkg:rpm/redhat/pcsc-lite@1.3.3-3?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pcsc-lite@1.3.3-3%3Farch=el4

url pkg:rpm/redhat/pcsc-lite@1.4.4-4?arch=el5_5

purl pkg:rpm/redhat/pcsc-lite@1.4.4-4?arch=el5_5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-79ja-1kzu-kkba

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pcsc-lite@1.4.4-4%3Farch=el5_5

url pkg:rpm/redhat/rhpki-ca@7.3.0-20?arch=el4

purl pkg:rpm/redhat/rhpki-ca@7.3.0-20?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-ca@7.3.0-20%3Farch=el4

url pkg:rpm/redhat/rhpki-java-tools@7.3.0-10?arch=el4

purl pkg:rpm/redhat/rhpki-java-tools@7.3.0-10?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-java-tools@7.3.0-10%3Farch=el4

url pkg:rpm/redhat/rhpki-kra@7.3.0-14?arch=el4

purl pkg:rpm/redhat/rhpki-kra@7.3.0-14?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-kra@7.3.0-14%3Farch=el4

url pkg:rpm/redhat/rhpki-manage@7.3.0-19?arch=el4

purl pkg:rpm/redhat/rhpki-manage@7.3.0-19?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-manage@7.3.0-19%3Farch=el4

url pkg:rpm/redhat/rhpki-native-tools@7.3.0-6?arch=el4

purl pkg:rpm/redhat/rhpki-native-tools@7.3.0-6?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-native-tools@7.3.0-6%3Farch=el4

url pkg:rpm/redhat/rhpki-ocsp@7.3.0-13?arch=el4

purl pkg:rpm/redhat/rhpki-ocsp@7.3.0-13?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-ocsp@7.3.0-13%3Farch=el4

url pkg:rpm/redhat/rhpki-tks@7.3.0-13?arch=el4

purl pkg:rpm/redhat/rhpki-tks@7.3.0-13?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-tks@7.3.0-13%3Farch=el4

url pkg:rpm/redhat/tomcat5@5.5.23-0jpp_4rh?arch=16

purl pkg:rpm/redhat/tomcat5@5.5.23-0jpp_4rh?arch=16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13dc-f2v6-kfbk

vulnerability	VCID-1gnp-gmjx-47er

vulnerability	VCID-2g26-cq3w-1kh4

vulnerability	VCID-2pn3-6xs3-nbcn

vulnerability	VCID-3s85-xfpq-xqbs

vulnerability	VCID-435a-8xfp-6qes

vulnerability	VCID-79ja-1kzu-kkba

vulnerability	VCID-7bth-46rq-d3h2

vulnerability	VCID-7j8b-zqfh-byd8

vulnerability	VCID-8tk5-k5f1-g3fb

vulnerability	VCID-8zzs-cvkw-nubr

vulnerability	VCID-9xyc-3a83-jqap

vulnerability	VCID-awrq-9r93-vyhd

vulnerability	VCID-b452-vwvq-cqb3

vulnerability	VCID-bame-16es-e7a2

vulnerability	VCID-bxjq-2fp7-h7g4

vulnerability	VCID-cphz-3xr3-z7be

vulnerability	VCID-czgs-upje-kffn

vulnerability	VCID-dap4-dpmg-wbad

vulnerability	VCID-dkh9-b39c-uqgz

vulnerability	VCID-ehc1-xda2-8bb3

vulnerability	VCID-f269-zjt1-7ke4

vulnerability	VCID-fr29-5pgc-nkgp

vulnerability	VCID-fwbt-3uqc-sqf7

vulnerability	VCID-g655-us3x-37c2

vulnerability	VCID-hv8d-3r75-abfb

vulnerability	VCID-jjcq-qzpr-r3g9

vulnerability	VCID-ka22-e3wp-yff7

vulnerability	VCID-nt3f-snfk-vuh7

vulnerability	VCID-pfc7-ap3y-u7ds

vulnerability	VCID-qxj8-c1gm-f7ep

vulnerability	VCID-suf7-4yqn-cbeu

vulnerability	VCID-suth-x23g-rbdf

vulnerability	VCID-u477-kb4d-uuh7

vulnerability	VCID-ukk2-3cpg-7ugy

vulnerability	VCID-vch8-nryx-rbea

vulnerability	VCID-vu91-nh94-nkb2

vulnerability	VCID-vyhc-nkpu-a3dh

vulnerability	VCID-xkr7-rzu4-rfc1

vulnerability	VCID-xxrc-k93u-4yf6

vulnerability	VCID-yyjh-f7n6-e3eg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat5@5.5.23-0jpp_4rh%3Farch=16

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4901.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4901.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-4901

reference_id

reference_type

scores

value	0.00094
scoring_system	epss
scoring_elements	0.26274
published_at	2026-06-11T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26476
published_at	2026-06-12T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26489
published_at	2026-06-13T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26475
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-4901

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=596426
reference_id	596426
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=596426

reference_url	https://access.redhat.com/errata/RHSA-2010:0533
reference_id	RHSA-2010:0533
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0533

reference_url	https://usn.ubuntu.com/969-1/
reference_id	USN-969-1
reference_type
scores
url	https://usn.ubuntu.com/969-1/

Weaknesses

cwe_id	228
name	Improper Handling of Syntactically Invalid Structure
description	The product does not handle or incorrectly handles input that is not syntactically well-formed with respect to the associated specification.

cwe_id	119
name	Improper Restriction of Operations within the Bounds of a Memory Buffer
description	The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Exploits

Severity_range_score null

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2pn3-6xs3-nbcn

Vulnerability Instance