Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-ntyz-qt6e-vqf3
SummaryPrior to Spark 2.3.3, in certain situations Spark would write user data to local disk unencrypted, even if spark.io.encryption.enabled=true. This includes cached blocks that are fetched to disk (controlled by spark.maxRemoteBlockSizeFetchToMem); in SparkR, using parallelize; in Pyspark, using broadcast and parallelize; and use of python udfs.
Aliases
0
alias CVE-2019-10099
1
alias PYSEC-2019-114
Fixed_packages
0
url pkg:pypi/pyspark@2.3.3
purl pkg:pypi/pyspark@2.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4rcx-smaw-c3an
1
vulnerability VCID-713x-tc78-rua3
2
vulnerability VCID-adsy-uby8-gkc9
3
vulnerability VCID-dwzq-skka-qkhj
4
vulnerability VCID-pue3-vp1e-xkat
5
vulnerability VCID-sr15-sfp8-vkfg
6
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.3.3
Affected_packages
0
url pkg:pypi/pyspark@2.1.1
purl pkg:pypi/pyspark@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3gwu-myk4-ufdj
1
vulnerability VCID-4rcx-smaw-c3an
2
vulnerability VCID-713x-tc78-rua3
3
vulnerability VCID-adsy-uby8-gkc9
4
vulnerability VCID-dwzq-skka-qkhj
5
vulnerability VCID-mmf5-ctmn-b3ep
6
vulnerability VCID-ntyz-qt6e-vqf3
7
vulnerability VCID-pue3-vp1e-xkat
8
vulnerability VCID-sr15-sfp8-vkfg
9
vulnerability VCID-xxtq-3ec6-m7hj
10
vulnerability VCID-zn7m-yme5-zufa
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.1.1
1
url pkg:pypi/pyspark@2.1.2
purl pkg:pypi/pyspark@2.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3gwu-myk4-ufdj
1
vulnerability VCID-4rcx-smaw-c3an
2
vulnerability VCID-713x-tc78-rua3
3
vulnerability VCID-adsy-uby8-gkc9
4
vulnerability VCID-dwzq-skka-qkhj
5
vulnerability VCID-mmf5-ctmn-b3ep
6
vulnerability VCID-ntyz-qt6e-vqf3
7
vulnerability VCID-pue3-vp1e-xkat
8
vulnerability VCID-sr15-sfp8-vkfg
9
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.1.2
2
url pkg:pypi/pyspark@2.1.3
purl pkg:pypi/pyspark@2.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4rcx-smaw-c3an
1
vulnerability VCID-713x-tc78-rua3
2
vulnerability VCID-adsy-uby8-gkc9
3
vulnerability VCID-dwzq-skka-qkhj
4
vulnerability VCID-mmf5-ctmn-b3ep
5
vulnerability VCID-ntyz-qt6e-vqf3
6
vulnerability VCID-pue3-vp1e-xkat
7
vulnerability VCID-sr15-sfp8-vkfg
8
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.1.3
3
url pkg:pypi/pyspark@2.2.0
purl pkg:pypi/pyspark@2.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3gwu-myk4-ufdj
1
vulnerability VCID-4rcx-smaw-c3an
2
vulnerability VCID-713x-tc78-rua3
3
vulnerability VCID-adsy-uby8-gkc9
4
vulnerability VCID-dwzq-skka-qkhj
5
vulnerability VCID-mmf5-ctmn-b3ep
6
vulnerability VCID-ntyz-qt6e-vqf3
7
vulnerability VCID-pue3-vp1e-xkat
8
vulnerability VCID-sr15-sfp8-vkfg
9
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.2.0
4
url pkg:pypi/pyspark@2.2.1
purl pkg:pypi/pyspark@2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3gwu-myk4-ufdj
1
vulnerability VCID-4rcx-smaw-c3an
2
vulnerability VCID-713x-tc78-rua3
3
vulnerability VCID-adsy-uby8-gkc9
4
vulnerability VCID-dwzq-skka-qkhj
5
vulnerability VCID-mmf5-ctmn-b3ep
6
vulnerability VCID-ntyz-qt6e-vqf3
7
vulnerability VCID-pue3-vp1e-xkat
8
vulnerability VCID-sr15-sfp8-vkfg
9
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.2.1
5
url pkg:pypi/pyspark@2.2.2
purl pkg:pypi/pyspark@2.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4rcx-smaw-c3an
1
vulnerability VCID-713x-tc78-rua3
2
vulnerability VCID-adsy-uby8-gkc9
3
vulnerability VCID-dwzq-skka-qkhj
4
vulnerability VCID-mmf5-ctmn-b3ep
5
vulnerability VCID-ntyz-qt6e-vqf3
6
vulnerability VCID-pue3-vp1e-xkat
7
vulnerability VCID-sr15-sfp8-vkfg
8
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.2.2
6
url pkg:pypi/pyspark@2.2.3
purl pkg:pypi/pyspark@2.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4rcx-smaw-c3an
1
vulnerability VCID-713x-tc78-rua3
2
vulnerability VCID-adsy-uby8-gkc9
3
vulnerability VCID-dwzq-skka-qkhj
4
vulnerability VCID-ntyz-qt6e-vqf3
5
vulnerability VCID-pue3-vp1e-xkat
6
vulnerability VCID-sr15-sfp8-vkfg
7
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.2.3
7
url pkg:pypi/pyspark@2.3.0
purl pkg:pypi/pyspark@2.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4rcx-smaw-c3an
1
vulnerability VCID-713x-tc78-rua3
2
vulnerability VCID-adsy-uby8-gkc9
3
vulnerability VCID-dwzq-skka-qkhj
4
vulnerability VCID-mmf5-ctmn-b3ep
5
vulnerability VCID-ntyz-qt6e-vqf3
6
vulnerability VCID-pue3-vp1e-xkat
7
vulnerability VCID-sr15-sfp8-vkfg
8
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.3.0
8
url pkg:pypi/pyspark@2.3.1
purl pkg:pypi/pyspark@2.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4rcx-smaw-c3an
1
vulnerability VCID-713x-tc78-rua3
2
vulnerability VCID-adsy-uby8-gkc9
3
vulnerability VCID-dwzq-skka-qkhj
4
vulnerability VCID-mmf5-ctmn-b3ep
5
vulnerability VCID-ntyz-qt6e-vqf3
6
vulnerability VCID-pue3-vp1e-xkat
7
vulnerability VCID-sr15-sfp8-vkfg
8
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.3.1
9
url pkg:pypi/pyspark@2.3.2
purl pkg:pypi/pyspark@2.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4rcx-smaw-c3an
1
vulnerability VCID-713x-tc78-rua3
2
vulnerability VCID-adsy-uby8-gkc9
3
vulnerability VCID-dwzq-skka-qkhj
4
vulnerability VCID-ntyz-qt6e-vqf3
5
vulnerability VCID-pue3-vp1e-xkat
6
vulnerability VCID-sr15-sfp8-vkfg
7
vulnerability VCID-xxtq-3ec6-m7hj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.3.2
References
0
reference_url https://lists.apache.org/thread.html/c2a39c207421797f82823a8aff488dcd332d9544038307bf69a2ba9e@%3Cuser.spark.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/c2a39c207421797f82823a8aff488dcd332d9544038307bf69a2ba9e@%3Cuser.spark.apache.org%3E
1
reference_url https://lists.apache.org/thread.html/ra216b7b0dd82a2c12c2df9d6095e689eb3f3d28164e6b6587da69fae@%3Ccommits.spark.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/ra216b7b0dd82a2c12c2df9d6095e689eb3f3d28164e6b6587da69fae@%3Ccommits.spark.apache.org%3E
2
reference_url https://lists.apache.org/thread.html/rabe1d47e2bf8b8f6d9f3068c8d2679731d57fa73b3a7ed1fa82406d2@%3Cissues.spark.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/rabe1d47e2bf8b8f6d9f3068c8d2679731d57fa73b3a7ed1fa82406d2@%3Cissues.spark.apache.org%3E
Weaknesses
Exploits
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-ntyz-qt6e-vqf3