Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-bt3d-7y39-8fh6

Summary grant table entry swaps have inadequate bounds checking

Aliases

alias	CVE-2012-3516

Fixed_packages

url	pkg:deb/debian/xen@0?distro=trixie
purl	pkg:deb/debian/xen@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@0%3Fdistro=trixie

url pkg:deb/debian/xen@4.14.6-1?distro=trixie

purl pkg:deb/debian/xen@4.14.6-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tb8-t91c-63bp

vulnerability	VCID-26a9-9zz3-wfhh

vulnerability	VCID-2trm-w3ww-cfhk

vulnerability	VCID-3bw4-631f-e7h6

vulnerability	VCID-3se4-qv6j-xqfq

vulnerability	VCID-3vdg-5g64-wkbt

vulnerability	VCID-46ad-1k9n-j3hm

vulnerability	VCID-4cdt-ycjx-6ub4

vulnerability	VCID-4k7p-3g95-n7dm

vulnerability	VCID-4pra-prf3-1uff

vulnerability	VCID-4rmg-db7g-u3hs

vulnerability	VCID-5ktg-bhh1-ubbz

vulnerability	VCID-5u88-jt28-cfb6

vulnerability	VCID-6dax-cddv-7bbs

vulnerability	VCID-6jqj-2qwn-8qd9

vulnerability	VCID-8k1q-b2kj-w7hh

vulnerability	VCID-8tv5-zxmm-r3fk

vulnerability	VCID-97zm-r9b6-uqdu

vulnerability	VCID-b57c-x3pw-7fb7

vulnerability	VCID-bhdk-jmss-4qc8

vulnerability	VCID-byu1-7n9c-5fes

vulnerability	VCID-c4xu-szkm-1kh6

vulnerability	VCID-ee3z-24pr-kqcm

vulnerability	VCID-ejhc-6yqt-gkgv

vulnerability	VCID-evcg-2z3p-gbch

vulnerability	VCID-h9hz-vur7-kyhg

vulnerability	VCID-j22f-mbqe-a7dk

vulnerability	VCID-p2fk-8snj-x7dy

vulnerability	VCID-psaa-jdr7-e3fm

vulnerability	VCID-q3p3-tgay-6kcs

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-rdub-9bhg-nbc6

vulnerability	VCID-rk2f-yqbb-nyd2

vulnerability	VCID-rt5n-e4wq-p3gh

vulnerability	VCID-tjgh-waa3-wqgk

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-uv8m-bj4c-8fes

vulnerability	VCID-vv23-mvyn-87hg

vulnerability	VCID-wd4s-jxuf-skbp

vulnerability	VCID-wz1m-aeaf-nkg7

vulnerability	VCID-xqpz-y83m-4uc4

vulnerability	VCID-ye1t-qhtx-sucm

vulnerability	VCID-z9rm-9p2q-wfag

vulnerability	VCID-zkeg-d5d5-vbda

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

purl pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qpfc-3296-9ub3

vulnerability	VCID-upju-tcz7-efg1

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

purl pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qsma-2ufh-jybe

vulnerability	VCID-wx6w-6y5m-fugn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie

Affected_packages

References

reference_url	http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00004.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00004.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3516.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3516.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-3516

reference_id

reference_type

scores

value	0.00081
scoring_system	epss
scoring_elements	0.23738
published_at	2026-04-24T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23908
published_at	2026-04-01T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.24034
published_at	2026-04-02T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.24073
published_at	2026-04-04T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23855
published_at	2026-04-07T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23922
published_at	2026-04-08T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23968
published_at	2026-04-09T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23985
published_at	2026-04-11T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23941
published_at	2026-04-12T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23884
published_at	2026-04-13T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23895
published_at	2026-04-16T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23885
published_at	2026-04-18T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23866
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-3516

reference_url	http://secunia.com/advisories/50472
reference_id
reference_type
scores
url	http://secunia.com/advisories/50472

reference_url	http://secunia.com/advisories/50530
reference_id
reference_type
scores
url	http://secunia.com/advisories/50530

reference_url	http://support.citrix.com/article/CTX134708
reference_id
reference_type
scores
url	http://support.citrix.com/article/CTX134708

reference_url	http://wiki.xen.org/wiki/Security_Announcements#XSA-18_grant_table_entry_swaps_have_inadequate_bounds_checking
reference_id
reference_type
scores
url	http://wiki.xen.org/wiki/Security_Announcements#XSA-18_grant_table_entry_swaps_have_inadequate_bounds_checking

reference_url	http://www.openwall.com/lists/oss-security/2012/09/05/11
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2012/09/05/11

reference_url	http://www.securityfocus.com/bid/55411
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/55411

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=851202
reference_id	851202
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=851202

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver::::::::
reference_id	cpe:2.3:a:citrix:xenserver::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.2.0:::::::*
reference_id	cpe:2.3:o:xen:xen:4.2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.2.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2012-3516

reference_id

CVE-2012-3516

reference_type

scores

value	6.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2012-3516

reference_url	https://xenbits.xen.org/xsa/advisory-18.html
reference_id	XSA-18
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-18.html

Weaknesses

cwe_id	863
name	Incorrect Authorization
description	The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

cwe_id	264
name	Permissions, Privileges, and Access Controls
description	Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Exploits

Severity_range_score 6.9 - 6.9

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bt3d-7y39-8fh6

Vulnerability Instance