Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-s176-xcrb-e3ea
Summary
Aliases
0
alias CVE-2026-27143
Fixed_packages
0
url pkg:apk/alpine/go@1.25.9-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/go@1.25.9-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.25.9-r0%3Farch=aarch64&distroversion=v3.23&reponame=community
1
url pkg:apk/alpine/go@1.25.9-r0?arch=armv7&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/go@1.25.9-r0?arch=armv7&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.25.9-r0%3Farch=armv7&distroversion=v3.23&reponame=community
2
url pkg:apk/alpine/go@1.25.9-r0?arch=loongarch64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/go@1.25.9-r0?arch=loongarch64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.25.9-r0%3Farch=loongarch64&distroversion=v3.23&reponame=community
3
url pkg:apk/alpine/go@1.25.9-r0?arch=x86&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/go@1.25.9-r0?arch=x86&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.25.9-r0%3Farch=x86&distroversion=v3.23&reponame=community
4
url pkg:apk/alpine/go@1.25.9-r0?arch=x86_64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/go@1.25.9-r0?arch=x86_64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.25.9-r0%3Farch=x86_64&distroversion=v3.23&reponame=community
5
url pkg:apk/alpine/go@1.25.9-r0?arch=armhf&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/go@1.25.9-r0?arch=armhf&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.25.9-r0%3Farch=armhf&distroversion=v3.23&reponame=community
6
url pkg:apk/alpine/go@1.25.9-r0?arch=ppc64le&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/go@1.25.9-r0?arch=ppc64le&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.25.9-r0%3Farch=ppc64le&distroversion=v3.23&reponame=community
7
url pkg:apk/alpine/go@1.25.9-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/go@1.25.9-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.25.9-r0%3Farch=riscv64&distroversion=v3.23&reponame=community
8
url pkg:apk/alpine/go@1.25.9-r0?arch=s390x&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/go@1.25.9-r0?arch=s390x&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.25.9-r0%3Farch=s390x&distroversion=v3.23&reponame=community
9
url pkg:apk/alpine/go@1.26.2-r0?arch=ppc64le&distroversion=edge&reponame=community
purl pkg:apk/alpine/go@1.26.2-r0?arch=ppc64le&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.26.2-r0%3Farch=ppc64le&distroversion=edge&reponame=community
10
url pkg:apk/alpine/go@1.26.2-r0?arch=riscv64&distroversion=edge&reponame=community
purl pkg:apk/alpine/go@1.26.2-r0?arch=riscv64&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.26.2-r0%3Farch=riscv64&distroversion=edge&reponame=community
11
url pkg:apk/alpine/go@1.26.2-r0?arch=s390x&distroversion=edge&reponame=community
purl pkg:apk/alpine/go@1.26.2-r0?arch=s390x&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.26.2-r0%3Farch=s390x&distroversion=edge&reponame=community
12
url pkg:apk/alpine/go@1.26.2-r0?arch=aarch64&distroversion=edge&reponame=community
purl pkg:apk/alpine/go@1.26.2-r0?arch=aarch64&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.26.2-r0%3Farch=aarch64&distroversion=edge&reponame=community
13
url pkg:apk/alpine/go@1.26.2-r0?arch=armhf&distroversion=edge&reponame=community
purl pkg:apk/alpine/go@1.26.2-r0?arch=armhf&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.26.2-r0%3Farch=armhf&distroversion=edge&reponame=community
14
url pkg:apk/alpine/go@1.26.2-r0?arch=armv7&distroversion=edge&reponame=community
purl pkg:apk/alpine/go@1.26.2-r0?arch=armv7&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.26.2-r0%3Farch=armv7&distroversion=edge&reponame=community
15
url pkg:apk/alpine/go@1.26.2-r0?arch=loongarch64&distroversion=edge&reponame=community
purl pkg:apk/alpine/go@1.26.2-r0?arch=loongarch64&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.26.2-r0%3Farch=loongarch64&distroversion=edge&reponame=community
16
url pkg:apk/alpine/go@1.26.2-r0?arch=x86_64&distroversion=edge&reponame=community
purl pkg:apk/alpine/go@1.26.2-r0?arch=x86_64&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.26.2-r0%3Farch=x86_64&distroversion=edge&reponame=community
17
url pkg:apk/alpine/go@1.26.2-r0?arch=x86&distroversion=edge&reponame=community
purl pkg:apk/alpine/go@1.26.2-r0?arch=x86&distroversion=edge&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/go@1.26.2-r0%3Farch=x86&distroversion=edge&reponame=community
18
url pkg:deb/debian/golang-1.25@1.25.9-1?distro=sid
purl pkg:deb/debian/golang-1.25@1.25.9-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.25@1.25.9-1%3Fdistro=sid
19
url pkg:deb/debian/golang-1.25@1.25.9-1
purl pkg:deb/debian/golang-1.25@1.25.9-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.25@1.25.9-1
20
url pkg:deb/debian/golang-1.26@1.26.2-1
purl pkg:deb/debian/golang-1.26@1.26.2-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.26@1.26.2-1
21
url pkg:deb/debian/golang-1.26@1.26.2-1?distro=sid
purl pkg:deb/debian/golang-1.26@1.26.2-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.26@1.26.2-1%3Fdistro=sid
Affected_packages
0
url pkg:deb/debian/golang-1.25@1.25.8-1
purl pkg:deb/debian/golang-1.25@1.25.8-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-245f-jhkn-w3ck
1
vulnerability VCID-s176-xcrb-e3ea
2
vulnerability VCID-svbs-h3y5-wfbn
3
vulnerability VCID-t19m-gs1u-rbfp
4
vulnerability VCID-tf52-aa91-4kf3
5
vulnerability VCID-tmb1-tq9e-puhd
6
vulnerability VCID-vw1r-8zev-ykf4
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.25@1.25.8-1
1
url pkg:deb/debian/golang-1.25@1.25.8-1?distro=sid
purl pkg:deb/debian/golang-1.25@1.25.8-1?distro=sid
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-245f-jhkn-w3ck
1
vulnerability VCID-91yp-p6st-8ucd
2
vulnerability VCID-ju53-xpej-3qca
3
vulnerability VCID-s176-xcrb-e3ea
4
vulnerability VCID-svbs-h3y5-wfbn
5
vulnerability VCID-t19m-gs1u-rbfp
6
vulnerability VCID-tf52-aa91-4kf3
7
vulnerability VCID-tmb1-tq9e-puhd
8
vulnerability VCID-vw1r-8zev-ykf4
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.25@1.25.8-1%3Fdistro=sid
2
url pkg:deb/debian/golang-1.26@1.26.1-1?distro=sid
purl pkg:deb/debian/golang-1.26@1.26.1-1?distro=sid
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-245f-jhkn-w3ck
1
vulnerability VCID-91yp-p6st-8ucd
2
vulnerability VCID-gtys-5r5h-p7ht
3
vulnerability VCID-ju53-xpej-3qca
4
vulnerability VCID-s176-xcrb-e3ea
5
vulnerability VCID-svbs-h3y5-wfbn
6
vulnerability VCID-t19m-gs1u-rbfp
7
vulnerability VCID-tf52-aa91-4kf3
8
vulnerability VCID-tmb1-tq9e-puhd
9
vulnerability VCID-vw1r-8zev-ykf4
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.26@1.26.1-1%3Fdistro=sid
3
url pkg:deb/debian/golang-1.26@1.26.1-1
purl pkg:deb/debian/golang-1.26@1.26.1-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-245f-jhkn-w3ck
1
vulnerability VCID-91yp-p6st-8ucd
2
vulnerability VCID-gtys-5r5h-p7ht
3
vulnerability VCID-ju53-xpej-3qca
4
vulnerability VCID-s176-xcrb-e3ea
5
vulnerability VCID-svbs-h3y5-wfbn
6
vulnerability VCID-t19m-gs1u-rbfp
7
vulnerability VCID-tf52-aa91-4kf3
8
vulnerability VCID-tmb1-tq9e-puhd
9
vulnerability VCID-vw1r-8zev-ykf4
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/golang-1.26@1.26.1-1
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27143.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27143.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-27143
reference_id
reference_type
scores
0
value 0.00018
scoring_system epss
scoring_elements 0.04556
published_at 2026-04-21T12:55:00Z
1
value 0.00018
scoring_system epss
scoring_elements 0.0442
published_at 2026-04-18T12:55:00Z
2
value 0.00024
scoring_system epss
scoring_elements 0.06628
published_at 2026-04-16T12:55:00Z
3
value 7e-05
scoring_system epss
scoring_elements 0.00622
published_at 2026-04-11T12:55:00Z
4
value 7e-05
scoring_system epss
scoring_elements 0.00618
published_at 2026-04-12T12:55:00Z
5
value 7e-05
scoring_system epss
scoring_elements 0.0062
published_at 2026-04-13T12:55:00Z
6
value 7e-05
scoring_system epss
scoring_elements 0.00623
published_at 2026-04-09T12:55:00Z
7
value 7e-05
scoring_system epss
scoring_elements 0.00629
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-27143
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27143
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27143
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU
reference_id 0uYbvbPZRWU
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-13T17:50:24Z/
url https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2456342
reference_id 2456342
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2456342
6
reference_url https://go.dev/cl/763765
reference_id 763765
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-13T17:50:24Z/
url https://go.dev/cl/763765
7
reference_url https://go.dev/issue/78333
reference_id 78333
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-13T17:50:24Z/
url https://go.dev/issue/78333
8
reference_url https://pkg.go.dev/vuln/GO-2026-4868
reference_id GO-2026-4868
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-13T17:50:24Z/
url https://pkg.go.dev/vuln/GO-2026-4868
Weaknesses
0
cwe_id 733
name Compiler Optimization Removal or Modification of Security-critical Code
description The developer builds a security-critical protection mechanism into the software, but the compiler optimizes the program such that the mechanism is removed or modified.
1
cwe_id 190
name Integer Overflow or Wraparound
description The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
Exploits
Severity_range_score7.4 - 9.8
Exploitability0.5
Weighted_severity7.8
Risk_score3.9
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-s176-xcrb-e3ea