Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-t1kx-cv1c-9ycs
SummaryAn issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. An attacker was able to spoof protected tags, which could potentially lead a victim to download malicious code.
Aliases
0
alias CVE-2023-2001
Fixed_packages
0
url pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
purl pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@15.10.8%252Bds1-2%3Fdistro=sid
1
url pkg:deb/debian/gitlab@17.6.5-19?distro=sid
purl pkg:deb/debian/gitlab@17.6.5-19?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@17.6.5-19%3Fdistro=sid
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-2001
reference_id
reference_type
scores
0
value 0.00445
scoring_system epss
scoring_elements 0.63473
published_at 2026-04-24T12:55:00Z
1
value 0.00445
scoring_system epss
scoring_elements 0.63445
published_at 2026-04-08T12:55:00Z
2
value 0.00445
scoring_system epss
scoring_elements 0.63463
published_at 2026-04-09T12:55:00Z
3
value 0.00445
scoring_system epss
scoring_elements 0.6348
published_at 2026-04-11T12:55:00Z
4
value 0.00445
scoring_system epss
scoring_elements 0.63464
published_at 2026-04-12T12:55:00Z
5
value 0.00445
scoring_system epss
scoring_elements 0.63462
published_at 2026-04-16T12:55:00Z
6
value 0.00445
scoring_system epss
scoring_elements 0.63469
published_at 2026-04-18T12:55:00Z
7
value 0.00445
scoring_system epss
scoring_elements 0.63455
published_at 2026-04-21T12:55:00Z
8
value 0.00445
scoring_system epss
scoring_elements 0.63428
published_at 2026-04-13T12:55:00Z
9
value 0.00445
scoring_system epss
scoring_elements 0.63394
published_at 2026-04-07T12:55:00Z
10
value 0.00524
scoring_system epss
scoring_elements 0.66913
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-2001
1
reference_url https://hackerone.com/reports/1908423
reference_id 1908423
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-07T16:54:01Z/
url https://hackerone.com/reports/1908423
2
reference_url https://gitlab.com/gitlab-org/gitlab/-/issues/406764
reference_id 406764
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-07T16:54:01Z/
url https://gitlab.com/gitlab-org/gitlab/-/issues/406764
3
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2001.json
reference_id CVE-2023-2001.json
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-07T16:54:01Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2001.json
Weaknesses
Exploits
Severity_range_score4.3 - 4.3
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-t1kx-cv1c-9ycs