Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-4xj4-ekjd-6yc4
SummaryAn issue has been discovered in GitLab affecting all versions before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. The main branch of a repository with a specially crafted name allows an attacker to create repositories with malicious code, victims who clone or download these repositories will execute arbitrary code on their systems.
Aliases
0
alias CVE-2023-0756
Fixed_packages
0
url pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
purl pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@15.10.8%252Bds1-2%3Fdistro=sid
1
url pkg:deb/debian/gitlab@17.6.5-19?distro=sid
purl pkg:deb/debian/gitlab@17.6.5-19?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@17.6.5-19%3Fdistro=sid
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-0756
reference_id
reference_type
scores
0
value 0.0022
scoring_system epss
scoring_elements 0.44555
published_at 2026-04-24T12:55:00Z
1
value 0.0022
scoring_system epss
scoring_elements 0.44692
published_at 2026-04-11T12:55:00Z
2
value 0.0022
scoring_system epss
scoring_elements 0.44662
published_at 2026-04-13T12:55:00Z
3
value 0.0022
scoring_system epss
scoring_elements 0.44718
published_at 2026-04-16T12:55:00Z
4
value 0.0022
scoring_system epss
scoring_elements 0.44711
published_at 2026-04-18T12:55:00Z
5
value 0.0022
scoring_system epss
scoring_elements 0.44641
published_at 2026-04-21T12:55:00Z
6
value 0.0022
scoring_system epss
scoring_elements 0.44664
published_at 2026-04-02T12:55:00Z
7
value 0.0022
scoring_system epss
scoring_elements 0.44685
published_at 2026-04-04T12:55:00Z
8
value 0.0022
scoring_system epss
scoring_elements 0.44622
published_at 2026-04-07T12:55:00Z
9
value 0.0022
scoring_system epss
scoring_elements 0.44673
published_at 2026-04-08T12:55:00Z
10
value 0.0022
scoring_system epss
scoring_elements 0.44675
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-0756
1
reference_url https://hackerone.com/reports/1864278
reference_id 1864278
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-12T16:08:01Z/
url https://hackerone.com/reports/1864278
2
reference_url https://gitlab.com/gitlab-org/gitlab/-/issues/390910
reference_id 390910
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-12T16:08:01Z/
url https://gitlab.com/gitlab-org/gitlab/-/issues/390910
3
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0756.json
reference_id CVE-2023-0756.json
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-02-12T16:08:01Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0756.json
Weaknesses
Exploits
Severity_range_score4.8 - 4.8
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-4xj4-ekjd-6yc4