Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-qrh9-bxde-fqau

Summary Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attack appear to be exploitable via network connectivity.

Aliases

alias	CVE-2018-1000805

alias	GHSA-f2j6-wrhh-v25m

alias	PYSEC-2018-69

Fixed_packages

url	pkg:pypi/paramiko@2.0.9
purl	pkg:pypi/paramiko@2.0.9
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.9

url	pkg:pypi/paramiko@2.1.6
purl	pkg:pypi/paramiko@2.1.6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.1.6

url	pkg:pypi/paramiko@2.2.4
purl	pkg:pypi/paramiko@2.2.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.2.4

url	pkg:pypi/paramiko@2.3.3
purl	pkg:pypi/paramiko@2.3.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.3.3

url	pkg:pypi/paramiko@2.4.2
purl	pkg:pypi/paramiko@2.4.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.4.2

Affected_packages

url pkg:pypi/paramiko@1.5.1

purl pkg:pypi/paramiko@1.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.5.1

url pkg:pypi/paramiko@1.5.2

purl pkg:pypi/paramiko@1.5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.5.2

url pkg:pypi/paramiko@1.5.4

purl pkg:pypi/paramiko@1.5.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.5.4

url pkg:pypi/paramiko@1.6

purl pkg:pypi/paramiko@1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.6

url pkg:pypi/paramiko@1.6.1

purl pkg:pypi/paramiko@1.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.6.1

url pkg:pypi/paramiko@1.6.2

purl pkg:pypi/paramiko@1.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.6.2

url pkg:pypi/paramiko@1.6.3

purl pkg:pypi/paramiko@1.6.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.6.3

url pkg:pypi/paramiko@1.6.4

purl pkg:pypi/paramiko@1.6.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.6.4

url pkg:pypi/paramiko@1.7

purl pkg:pypi/paramiko@1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.7

url pkg:pypi/paramiko@1.7.1

purl pkg:pypi/paramiko@1.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.7.1

url pkg:pypi/paramiko@1.7.2

purl pkg:pypi/paramiko@1.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.7.2

url pkg:pypi/paramiko@1.7.4

purl pkg:pypi/paramiko@1.7.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.7.4

url pkg:pypi/paramiko@1.7.5

purl pkg:pypi/paramiko@1.7.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.7.5

url pkg:pypi/paramiko@1.7.6

purl pkg:pypi/paramiko@1.7.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.7.6

url pkg:pypi/paramiko@1.7.7.1

purl pkg:pypi/paramiko@1.7.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.7.7.1

url pkg:pypi/paramiko@1.7.7.2

purl pkg:pypi/paramiko@1.7.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.7.7.2

url pkg:pypi/paramiko@1.8.0

purl pkg:pypi/paramiko@1.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.8.0

url pkg:pypi/paramiko@1.8.1

purl pkg:pypi/paramiko@1.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.8.1

url pkg:pypi/paramiko@1.9.0

purl pkg:pypi/paramiko@1.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.9.0

url pkg:pypi/paramiko@1.10.0

purl pkg:pypi/paramiko@1.10.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.10.0

url pkg:pypi/paramiko@1.10.1

purl pkg:pypi/paramiko@1.10.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.10.1

url pkg:pypi/paramiko@1.10.2

purl pkg:pypi/paramiko@1.10.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.10.2

url pkg:pypi/paramiko@1.10.3

purl pkg:pypi/paramiko@1.10.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.10.3

url pkg:pypi/paramiko@1.10.4

purl pkg:pypi/paramiko@1.10.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.10.4

url pkg:pypi/paramiko@1.10.5

purl pkg:pypi/paramiko@1.10.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.10.5

url pkg:pypi/paramiko@1.10.6

purl pkg:pypi/paramiko@1.10.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.10.6

url pkg:pypi/paramiko@1.10.7

purl pkg:pypi/paramiko@1.10.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.10.7

url pkg:pypi/paramiko@1.11.0

purl pkg:pypi/paramiko@1.11.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.11.0

url pkg:pypi/paramiko@1.11.1

purl pkg:pypi/paramiko@1.11.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.11.1

url pkg:pypi/paramiko@1.11.2

purl pkg:pypi/paramiko@1.11.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.11.2

url pkg:pypi/paramiko@1.11.3

purl pkg:pypi/paramiko@1.11.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.11.3

url pkg:pypi/paramiko@1.11.4

purl pkg:pypi/paramiko@1.11.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.11.4

url pkg:pypi/paramiko@1.11.5

purl pkg:pypi/paramiko@1.11.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.11.5

url pkg:pypi/paramiko@1.11.6

purl pkg:pypi/paramiko@1.11.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.11.6

url pkg:pypi/paramiko@1.12.0

purl pkg:pypi/paramiko@1.12.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.12.0

url pkg:pypi/paramiko@1.12.1

purl pkg:pypi/paramiko@1.12.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.12.1

url pkg:pypi/paramiko@1.12.2

purl pkg:pypi/paramiko@1.12.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.12.2

url pkg:pypi/paramiko@1.12.3

purl pkg:pypi/paramiko@1.12.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.12.3

url pkg:pypi/paramiko@1.12.4

purl pkg:pypi/paramiko@1.12.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.12.4

url pkg:pypi/paramiko@1.13.0

purl pkg:pypi/paramiko@1.13.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.13.0

url pkg:pypi/paramiko@1.13.1

purl pkg:pypi/paramiko@1.13.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.13.1

url pkg:pypi/paramiko@1.13.2

purl pkg:pypi/paramiko@1.13.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.13.2

url pkg:pypi/paramiko@1.13.3

purl pkg:pypi/paramiko@1.13.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.13.3

url pkg:pypi/paramiko@1.13.4

purl pkg:pypi/paramiko@1.13.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.13.4

url pkg:pypi/paramiko@1.14.0

purl pkg:pypi/paramiko@1.14.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.14.0

url pkg:pypi/paramiko@1.14.1

purl pkg:pypi/paramiko@1.14.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.14.1

url pkg:pypi/paramiko@1.14.2

purl pkg:pypi/paramiko@1.14.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.14.2

url pkg:pypi/paramiko@1.14.3

purl pkg:pypi/paramiko@1.14.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.14.3

url pkg:pypi/paramiko@1.15.0

purl pkg:pypi/paramiko@1.15.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.15.0

url pkg:pypi/paramiko@1.15.1

purl pkg:pypi/paramiko@1.15.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.15.1

url pkg:pypi/paramiko@1.15.2

purl pkg:pypi/paramiko@1.15.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.15.2

url pkg:pypi/paramiko@1.15.3

purl pkg:pypi/paramiko@1.15.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.15.3

url pkg:pypi/paramiko@1.15.4

purl pkg:pypi/paramiko@1.15.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.15.4

url pkg:pypi/paramiko@1.15.5

purl pkg:pypi/paramiko@1.15.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.15.5

url pkg:pypi/paramiko@1.16.0

purl pkg:pypi/paramiko@1.16.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.16.0

url pkg:pypi/paramiko@1.16.1

purl pkg:pypi/paramiko@1.16.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.16.1

url pkg:pypi/paramiko@1.16.2

purl pkg:pypi/paramiko@1.16.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.16.2

url pkg:pypi/paramiko@1.16.3

purl pkg:pypi/paramiko@1.16.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.16.3

url pkg:pypi/paramiko@1.17.0

purl pkg:pypi/paramiko@1.17.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.17.0

url pkg:pypi/paramiko@1.17.1

purl pkg:pypi/paramiko@1.17.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.17.1

url pkg:pypi/paramiko@1.17.2

purl pkg:pypi/paramiko@1.17.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.17.2

url pkg:pypi/paramiko@1.17.3

purl pkg:pypi/paramiko@1.17.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.17.3

url pkg:pypi/paramiko@1.17.4

purl pkg:pypi/paramiko@1.17.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.17.4

url pkg:pypi/paramiko@1.17.5

purl pkg:pypi/paramiko@1.17.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.17.5

url pkg:pypi/paramiko@1.17.6

purl pkg:pypi/paramiko@1.17.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.17.6

url pkg:pypi/paramiko@1.18.0

purl pkg:pypi/paramiko@1.18.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mfvw-qzb9-8bax

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.18.0

url pkg:pypi/paramiko@1.18.1

purl pkg:pypi/paramiko@1.18.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.18.1

url pkg:pypi/paramiko@1.18.2

purl pkg:pypi/paramiko@1.18.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.18.2

url pkg:pypi/paramiko@1.18.3

purl pkg:pypi/paramiko@1.18.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.18.3

url pkg:pypi/paramiko@1.18.4

purl pkg:pypi/paramiko@1.18.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.18.4

url pkg:pypi/paramiko@1.18.5

purl pkg:pypi/paramiko@1.18.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@1.18.5

url pkg:pypi/paramiko@2.0.0

purl pkg:pypi/paramiko@2.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mfvw-qzb9-8bax

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.0

url pkg:pypi/paramiko@2.0.1

purl pkg:pypi/paramiko@2.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.1

url pkg:pypi/paramiko@2.0.2

purl pkg:pypi/paramiko@2.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.2

url pkg:pypi/paramiko@2.0.3

purl pkg:pypi/paramiko@2.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.3

url pkg:pypi/paramiko@2.0.4

purl pkg:pypi/paramiko@2.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.4

url pkg:pypi/paramiko@2.0.5

purl pkg:pypi/paramiko@2.0.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.5

url pkg:pypi/paramiko@2.0.6

purl pkg:pypi/paramiko@2.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.6

url pkg:pypi/paramiko@2.0.7

purl pkg:pypi/paramiko@2.0.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.7

url pkg:pypi/paramiko@2.0.8

purl pkg:pypi/paramiko@2.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.0.8

url pkg:pypi/paramiko@2.1.0

purl pkg:pypi/paramiko@2.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mfvw-qzb9-8bax

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.1.0

url pkg:pypi/paramiko@2.2.0

purl pkg:pypi/paramiko@2.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mfvw-qzb9-8bax

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.2.0

url pkg:pypi/paramiko@2.3.0

purl pkg:pypi/paramiko@2.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mfvw-qzb9-8bax

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.3.0

url pkg:pypi/paramiko@2.4.0

purl pkg:pypi/paramiko@2.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mfvw-qzb9-8bax

vulnerability	VCID-qrh9-bxde-fqau

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/paramiko@2.4.0

References

reference_url	https://access.redhat.com/errata/RHBA-2018:3497
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHBA-2018:3497

reference_url	https://access.redhat.com/errata/RHSA-2018:3347
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3347

reference_url	https://access.redhat.com/errata/RHSA-2018:3406
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3406

reference_url	https://access.redhat.com/errata/RHSA-2018:3505
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3505

reference_url	https://github.com/advisories/GHSA-f2j6-wrhh-v25m
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-f2j6-wrhh-v25m

reference_url	https://github.com/paramiko/paramiko
reference_id
reference_type
scores
url	https://github.com/paramiko/paramiko

reference_url	https://github.com/paramiko/paramiko/issues/1283
reference_id
reference_type
scores
url	https://github.com/paramiko/paramiko/issues/1283

reference_url	https://github.com/pypa/advisory-database/tree/main/vulns/paramiko/PYSEC-2018-69.yaml
reference_id
reference_type
scores
url	https://github.com/pypa/advisory-database/tree/main/vulns/paramiko/PYSEC-2018-69.yaml

reference_url	https://herolab.usd.de/wp-content/uploads/sites/4/usd20180023.txt
reference_id
reference_type
scores
url	https://herolab.usd.de/wp-content/uploads/sites/4/usd20180023.txt

reference_url	https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html

reference_url	https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html

reference_url	https://usn.ubuntu.com/3796-1
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3796-1

reference_url	https://usn.ubuntu.com/3796-1/
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3796-1/

reference_url	https://usn.ubuntu.com/3796-2
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3796-2

reference_url	https://usn.ubuntu.com/3796-2/
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3796-2/

reference_url	https://usn.ubuntu.com/3796-3
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3796-3

reference_url	https://usn.ubuntu.com/3796-3/
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3796-3/

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2018-1000805
reference_id	CVE-2018-1000805
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2018-1000805

Weaknesses

cwe_id	732
name	Incorrect Permission Assignment for Critical Resource
description	The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

cwe_id	863
name	Incorrect Authorization
description	The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score null

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qrh9-bxde-fqau

Vulnerability Instance