Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-yzes-ta7y-k3af
SummaryAn issue has been discovered in GitLab affecting all versions starting from 13.11 before 15.8.5, all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. It was possible that a project member demoted to a user role to read project updates by doing a diff with a pre-existing fork.
Aliases
0
alias CVE-2023-0485
Fixed_packages
0
url pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
purl pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@15.10.8%252Bds1-2%3Fdistro=sid
1
url pkg:deb/debian/gitlab@17.6.5-19?distro=sid
purl pkg:deb/debian/gitlab@17.6.5-19?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@17.6.5-19%3Fdistro=sid
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-0485
reference_id
reference_type
scores
0
value 0.00418
scoring_system epss
scoring_elements 0.61811
published_at 2026-04-24T12:55:00Z
1
value 0.00418
scoring_system epss
scoring_elements 0.61781
published_at 2026-04-08T12:55:00Z
2
value 0.00418
scoring_system epss
scoring_elements 0.61796
published_at 2026-04-09T12:55:00Z
3
value 0.00418
scoring_system epss
scoring_elements 0.61817
published_at 2026-04-11T12:55:00Z
4
value 0.00418
scoring_system epss
scoring_elements 0.61805
published_at 2026-04-12T12:55:00Z
5
value 0.00418
scoring_system epss
scoring_elements 0.61785
published_at 2026-04-13T12:55:00Z
6
value 0.00418
scoring_system epss
scoring_elements 0.61828
published_at 2026-04-16T12:55:00Z
7
value 0.00418
scoring_system epss
scoring_elements 0.61833
published_at 2026-04-18T12:55:00Z
8
value 0.00418
scoring_system epss
scoring_elements 0.61816
published_at 2026-04-21T12:55:00Z
9
value 0.00418
scoring_system epss
scoring_elements 0.61732
published_at 2026-04-07T12:55:00Z
10
value 0.00517
scoring_system epss
scoring_elements 0.66679
published_at 2026-04-04T12:55:00Z
11
value 0.00517
scoring_system epss
scoring_elements 0.66653
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-0485
1
reference_url https://hackerone.com/reports/1837937
reference_id 1837937
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-30T14:36:43Z/
url https://hackerone.com/reports/1837937
2
reference_url https://gitlab.com/gitlab-org/gitlab/-/issues/389191
reference_id 389191
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-30T14:36:43Z/
url https://gitlab.com/gitlab-org/gitlab/-/issues/389191
3
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0485.json
reference_id CVE-2023-0485.json
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-30T14:36:43Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0485.json
Weaknesses
Exploits
Severity_range_score6.5 - 6.5
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-yzes-ta7y-k3af