Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-ehff-j1pz-b7e8
SummaryThe modules mod_proxy_ajp and mod_proxy_http did not always close the connection to the back end server when necessary as part of error handling. This could lead to an information disclosure due to a response mixup between users.
Aliases
0
alias CVE-2012-3502
Fixed_packages
0
url pkg:apache/httpd@2.4.3
purl pkg:apache/httpd@2.4.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1189-ej89-hybs
1
vulnerability VCID-17hy-4ppt-xyhw
2
vulnerability VCID-1d24-sy5z-jfhh
3
vulnerability VCID-1zk6-7wv2-ukcz
4
vulnerability VCID-2nmh-7tfa-zyb2
5
vulnerability VCID-2xc4-7zg9-y7fw
6
vulnerability VCID-3djp-gq4c-1fa9
7
vulnerability VCID-3wuk-hwg1-6fa6
8
vulnerability VCID-5bej-9h7w-33c8
9
vulnerability VCID-5qkp-3w54-j3a5
10
vulnerability VCID-5xrt-1n1q-4bey
11
vulnerability VCID-66k7-maf9-dfcd
12
vulnerability VCID-6pzx-1e5t-xbes
13
vulnerability VCID-8axm-4anr-27ht
14
vulnerability VCID-8gcm-7q3n-q7bm
15
vulnerability VCID-91u7-vh6n-v7fm
16
vulnerability VCID-9qdr-1v39-d7b7
17
vulnerability VCID-auhk-ppv5-buaa
18
vulnerability VCID-bvkg-nrwd-e7g8
19
vulnerability VCID-ct26-19cq-8kd7
20
vulnerability VCID-fnxp-n271-mfd8
21
vulnerability VCID-fqem-96w3-rucb
22
vulnerability VCID-fyrq-yg2u-jkc7
23
vulnerability VCID-h6kk-81jx-h7b8
24
vulnerability VCID-jt89-ruvk-1kbj
25
vulnerability VCID-jzuw-73df-mfff
26
vulnerability VCID-k4kb-21tp-4kc8
27
vulnerability VCID-ke1s-451y-p3cz
28
vulnerability VCID-kpew-rarv-83dg
29
vulnerability VCID-nb91-camp-eufc
30
vulnerability VCID-pc2n-ga7g-byga
31
vulnerability VCID-q5wm-suxb-jfeb
32
vulnerability VCID-qayj-kts9-3fde
33
vulnerability VCID-rfqy-e7pv-dyfy
34
vulnerability VCID-rhk3-ujc1-q7fj
35
vulnerability VCID-rhwb-4vyp-8kf2
36
vulnerability VCID-ssvj-7g27-1ug6
37
vulnerability VCID-tbud-pwyt-aye9
38
vulnerability VCID-uwqg-yytc-vfae
39
vulnerability VCID-w6p6-u8ku-k3f6
40
vulnerability VCID-wgte-97r1-j7a9
41
vulnerability VCID-zc2p-sfu7-jkhc
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.3
1
url pkg:deb/debian/apache2@0?distro=trixie
purl pkg:deb/debian/apache2@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie
2
url pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie
purl pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie
3
url pkg:deb/debian/apache2@2.4.66-1~deb12u1?distro=trixie
purl pkg:deb/debian/apache2@2.4.66-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-1~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/apache2@2.4.66-1~deb13u2?distro=trixie
purl pkg:deb/debian/apache2@2.4.66-1~deb13u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-1~deb13u2%3Fdistro=trixie
5
url pkg:deb/debian/apache2@2.4.66-8?distro=trixie
purl pkg:deb/debian/apache2@2.4.66-8?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-8%3Fdistro=trixie
Affected_packages
0
url pkg:apache/httpd@2.4.1
purl pkg:apache/httpd@2.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1189-ej89-hybs
1
vulnerability VCID-17hy-4ppt-xyhw
2
vulnerability VCID-1d24-sy5z-jfhh
3
vulnerability VCID-1zk6-7wv2-ukcz
4
vulnerability VCID-2nmh-7tfa-zyb2
5
vulnerability VCID-2xc4-7zg9-y7fw
6
vulnerability VCID-3djp-gq4c-1fa9
7
vulnerability VCID-3wuk-hwg1-6fa6
8
vulnerability VCID-5bej-9h7w-33c8
9
vulnerability VCID-5qkp-3w54-j3a5
10
vulnerability VCID-5xrt-1n1q-4bey
11
vulnerability VCID-66k7-maf9-dfcd
12
vulnerability VCID-6bez-sgg8-cbbq
13
vulnerability VCID-6pzx-1e5t-xbes
14
vulnerability VCID-8axm-4anr-27ht
15
vulnerability VCID-8gcm-7q3n-q7bm
16
vulnerability VCID-91u7-vh6n-v7fm
17
vulnerability VCID-9qdr-1v39-d7b7
18
vulnerability VCID-auhk-ppv5-buaa
19
vulnerability VCID-bvkg-nrwd-e7g8
20
vulnerability VCID-ct26-19cq-8kd7
21
vulnerability VCID-ehff-j1pz-b7e8
22
vulnerability VCID-ese4-47tg-efbw
23
vulnerability VCID-fnxp-n271-mfd8
24
vulnerability VCID-fqem-96w3-rucb
25
vulnerability VCID-fyrq-yg2u-jkc7
26
vulnerability VCID-h6kk-81jx-h7b8
27
vulnerability VCID-jt89-ruvk-1kbj
28
vulnerability VCID-jzuw-73df-mfff
29
vulnerability VCID-k4kb-21tp-4kc8
30
vulnerability VCID-ke1s-451y-p3cz
31
vulnerability VCID-kpew-rarv-83dg
32
vulnerability VCID-nb91-camp-eufc
33
vulnerability VCID-pc2n-ga7g-byga
34
vulnerability VCID-q5wm-suxb-jfeb
35
vulnerability VCID-qayj-kts9-3fde
36
vulnerability VCID-rfqy-e7pv-dyfy
37
vulnerability VCID-rhk3-ujc1-q7fj
38
vulnerability VCID-rhwb-4vyp-8kf2
39
vulnerability VCID-ssvj-7g27-1ug6
40
vulnerability VCID-tbud-pwyt-aye9
41
vulnerability VCID-uwqg-yytc-vfae
42
vulnerability VCID-w6p6-u8ku-k3f6
43
vulnerability VCID-wgte-97r1-j7a9
44
vulnerability VCID-zc2p-sfu7-jkhc
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.1
1
url pkg:apache/httpd@2.4.2
purl pkg:apache/httpd@2.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1189-ej89-hybs
1
vulnerability VCID-17hy-4ppt-xyhw
2
vulnerability VCID-1d24-sy5z-jfhh
3
vulnerability VCID-1zk6-7wv2-ukcz
4
vulnerability VCID-2nmh-7tfa-zyb2
5
vulnerability VCID-2xc4-7zg9-y7fw
6
vulnerability VCID-3djp-gq4c-1fa9
7
vulnerability VCID-3wuk-hwg1-6fa6
8
vulnerability VCID-5bej-9h7w-33c8
9
vulnerability VCID-5qkp-3w54-j3a5
10
vulnerability VCID-5xrt-1n1q-4bey
11
vulnerability VCID-66k7-maf9-dfcd
12
vulnerability VCID-6bez-sgg8-cbbq
13
vulnerability VCID-6pzx-1e5t-xbes
14
vulnerability VCID-8axm-4anr-27ht
15
vulnerability VCID-8gcm-7q3n-q7bm
16
vulnerability VCID-91u7-vh6n-v7fm
17
vulnerability VCID-9qdr-1v39-d7b7
18
vulnerability VCID-auhk-ppv5-buaa
19
vulnerability VCID-bvkg-nrwd-e7g8
20
vulnerability VCID-ct26-19cq-8kd7
21
vulnerability VCID-ehff-j1pz-b7e8
22
vulnerability VCID-fnxp-n271-mfd8
23
vulnerability VCID-fqem-96w3-rucb
24
vulnerability VCID-fyrq-yg2u-jkc7
25
vulnerability VCID-h6kk-81jx-h7b8
26
vulnerability VCID-jt89-ruvk-1kbj
27
vulnerability VCID-jzuw-73df-mfff
28
vulnerability VCID-k4kb-21tp-4kc8
29
vulnerability VCID-ke1s-451y-p3cz
30
vulnerability VCID-kpew-rarv-83dg
31
vulnerability VCID-nb91-camp-eufc
32
vulnerability VCID-pc2n-ga7g-byga
33
vulnerability VCID-q5wm-suxb-jfeb
34
vulnerability VCID-qayj-kts9-3fde
35
vulnerability VCID-rfqy-e7pv-dyfy
36
vulnerability VCID-rhk3-ujc1-q7fj
37
vulnerability VCID-rhwb-4vyp-8kf2
38
vulnerability VCID-ssvj-7g27-1ug6
39
vulnerability VCID-tbud-pwyt-aye9
40
vulnerability VCID-uwqg-yytc-vfae
41
vulnerability VCID-w6p6-u8ku-k3f6
42
vulnerability VCID-wgte-97r1-j7a9
43
vulnerability VCID-zc2p-sfu7-jkhc
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.2
References
0
reference_url http://httpd.apache.org/security/vulnerabilities_24.html
reference_id
reference_type
scores
url http://httpd.apache.org/security/vulnerabilities_24.html
1
reference_url http://mail-archives.apache.org/mod_mbox/www-announce/201208.mbox/%3C0BFFEA9B-801B-4BAA-9534-56F640268E30%40apache.org%3E
reference_id
reference_type
scores
url http://mail-archives.apache.org/mod_mbox/www-announce/201208.mbox/%3C0BFFEA9B-801B-4BAA-9534-56F640268E30%40apache.org%3E
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3502.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3502.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3502
reference_id
reference_type
scores
0
value 0.03787
scoring_system epss
scoring_elements 0.88073
published_at 2026-04-13T12:55:00Z
1
value 0.03787
scoring_system epss
scoring_elements 0.88014
published_at 2026-04-01T12:55:00Z
2
value 0.03787
scoring_system epss
scoring_elements 0.88079
published_at 2026-04-11T12:55:00Z
3
value 0.03787
scoring_system epss
scoring_elements 0.88072
published_at 2026-04-12T12:55:00Z
4
value 0.03787
scoring_system epss
scoring_elements 0.88023
published_at 2026-04-02T12:55:00Z
5
value 0.03787
scoring_system epss
scoring_elements 0.88037
published_at 2026-04-04T12:55:00Z
6
value 0.03787
scoring_system epss
scoring_elements 0.88044
published_at 2026-04-07T12:55:00Z
7
value 0.03787
scoring_system epss
scoring_elements 0.88063
published_at 2026-04-08T12:55:00Z
8
value 0.03787
scoring_system epss
scoring_elements 0.88069
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3502
4
reference_url https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E
5
reference_url https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E
6
reference_url https://lists.apache.org/thread.html/r05b5357d1f6bd106f41541ee7d87aafe3f5ea4dc3e9bde5ce09baff8%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r05b5357d1f6bd106f41541ee7d87aafe3f5ea4dc3e9bde5ce09baff8%40%3Ccvs.httpd.apache.org%3E
7
reference_url https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E
8
reference_url https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E
9
reference_url https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E
10
reference_url https://lists.apache.org/thread.html/r9b4b963760a3cb5a4a70c902f325c6c0337fe51d5b8570416f8f8729%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r9b4b963760a3cb5a4a70c902f325c6c0337fe51d5b8570416f8f8729%40%3Ccvs.httpd.apache.org%3E
11
reference_url https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
12
reference_url https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E
13
reference_url https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E
14
reference_url https://lists.apache.org/thread.html/rd336919f655b7ff309385e34a143e41c503e133da80414485b3abcc9%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/rd336919f655b7ff309385e34a143e41c503e133da80414485b3abcc9%40%3Ccvs.httpd.apache.org%3E
15
reference_url https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E
16
reference_url https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
17
reference_url http://www.apache.org/dist/httpd/CHANGES_2.4.3
reference_id
reference_type
scores
url http://www.apache.org/dist/httpd/CHANGES_2.4.3
18
reference_url http://www.securityfocus.com/bid/55131
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/55131
19
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=850776
reference_id 850776
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=850776
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:http_server:2.4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.0:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:http_server:2.4.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.1:*:*:*:*:*:*:*
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:http_server:2.4.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.2:*:*:*:*:*:*:*
23
reference_url https://httpd.apache.org/security/json/CVE-2012-3502.json
reference_id CVE-2012-3502
reference_type
scores
0
value important
scoring_system apache_httpd
scoring_elements
url https://httpd.apache.org/security/json/CVE-2012-3502.json
24
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-3502
reference_id CVE-2012-3502
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:N/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2012-3502
Weaknesses
0
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Exploits
Severity_range_score4.3 - 8.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-ehff-j1pz-b7e8