Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-1hxu-54ft-9uf3

Summary qemu guest agent (qga) insecure file permissions

Aliases

alias	CVE-2013-2007

Fixed_packages

url	pkg:deb/debian/qemu@0?distro=trixie
purl	pkg:deb/debian/qemu@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@0%3Fdistro=trixie

url pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3kyg-9mf3-kfft

vulnerability	VCID-6qnt-yaa3-p3bb

vulnerability	VCID-cenj-mz55-jbg6

vulnerability	VCID-d2ve-dnmj-4bbz

vulnerability	VCID-ej5p-r4az-6ud2

vulnerability	VCID-ewb7-nrtu-g7ex

vulnerability	VCID-gc6n-kgsc-f3b6

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-mtj9-1cns-yybw

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-p2dz-mtns-5bb4

vulnerability	VCID-ptty-88p4-ybe9

vulnerability	VCID-pxjg-chmx-nkdc

vulnerability	VCID-qh2s-apkz-sbaz

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-t5gq-4bhn-gkej

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-w7gc-1eh2-3ufu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

purl pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkf8-96k7-kuc9

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-t58m-9jqp-43c9

vulnerability	VCID-uzxc-npak-yyc4

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/qemu@1:10.0.8%2Bds-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-n71j-fz74-kyhf

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.0.8%252Bds-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

purl pkg:deb/debian/qemu@1:10.2.1%2Bds-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9szt-c829-zfdh

vulnerability	VCID-detn-3zsq-3qh7

vulnerability	VCID-m47q-17n6-t7gg

vulnerability	VCID-vcun-y6d5-6uby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.1%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:10.2.2%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:10.2.2%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
purl	pkg:deb/debian/qemu@1:11.0.0%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:11.0.0%252Bds-1%3Fdistro=trixie

Affected_packages

url pkg:rpm/redhat/qemu-kvm@2:0.12.1.2-2.355.el6_4?arch=5

purl pkg:rpm/redhat/qemu-kvm@2:0.12.1.2-2.355.el6_4?arch=5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hxu-54ft-9uf3

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/qemu-kvm@2:0.12.1.2-2.355.el6_4%3Farch=5

References

reference_url	http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=c689b4f1bac352dcfd6ecb9a1d45337de0f1de67
reference_id
reference_type
scores
url	http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=c689b4f1bac352dcfd6ecb9a1d45337de0f1de67

reference_url	http://lists.opensuse.org/opensuse-updates/2013-07/msg00057.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2013-07/msg00057.html

reference_url	http://osvdb.org/93032
reference_id
reference_type
scores
url	http://osvdb.org/93032

reference_url	http://rhn.redhat.com/errata/RHSA-2013-0791.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2013-0791.html

reference_url	http://rhn.redhat.com/errata/RHSA-2013-0896.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2013-0896.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2007.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2007.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-2007

reference_id

reference_type

scores

value	0.00034
scoring_system	epss
scoring_elements	0.09841
published_at	2026-04-21T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09739
published_at	2026-04-01T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09811
published_at	2026-04-02T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09861
published_at	2026-04-04T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09761
published_at	2026-04-07T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09832
published_at	2026-04-08T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09886
published_at	2026-04-24T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09892
published_at	2026-04-11T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09855
published_at	2026-04-12T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.0984
published_at	2026-04-13T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09723
published_at	2026-04-16T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09692
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-2007

reference_url	http://secunia.com/advisories/53325
reference_id
reference_type
scores
url	http://secunia.com/advisories/53325

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/84047
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/84047

reference_url	http://www.openwall.com/lists/oss-security/2013/05/06/5
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2013/05/06/5

reference_url	http://www.securityfocus.com/bid/59675
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/59675

reference_url	http://www.securitytracker.com/id/1028521
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1028521

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=956082
reference_id	956082
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=956082

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1.4.1:::::::*
reference_id	cpe:2.3:a:qemu:qemu:1.4.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1.4.1:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2013-2007

reference_id

CVE-2013-2007

reference_type

scores

value	6.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2013-2007

reference_url	https://access.redhat.com/errata/RHSA-2013:0896
reference_id	RHSA-2013:0896
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0896

reference_url	https://xenbits.xen.org/xsa/advisory-51.html
reference_id	XSA-51
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-51.html

Weaknesses

cwe_id	264
name	Permissions, Privileges, and Access Controls
description	Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Exploits

Severity_range_score 6.9 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1hxu-54ft-9uf3

Vulnerability Instance