Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-kukb-s61t-pbc3
SummaryMultiple vulnerabilities have been discovered in glibc, the worst of which could lead to execution of arbitrary code.
Aliases
0
alias CVE-2025-8058
Fixed_packages
0
url pkg:deb/debian/glibc@2.36-8
purl pkg:deb/debian/glibc@2.36-8
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-8
1
url pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie
purl pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-nwfb-xnks-1kg7
2
vulnerability VCID-ssnc-wdcf-sfc9
3
vulnerability VCID-tcpv-4crc-zuap
4
vulnerability VCID-us68-psx5-zude
5
vulnerability VCID-zn6t-3mvb-wufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-9%252Bdeb12u13%3Fdistro=trixie
2
url pkg:deb/debian/glibc@2.41-11?distro=trixie
purl pkg:deb/debian/glibc@2.41-11?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.41-11%3Fdistro=trixie
3
url pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-nwfb-xnks-1kg7
2
vulnerability VCID-us68-psx5-zude
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.41-12%252Bdeb13u2%3Fdistro=trixie
4
url pkg:deb/debian/glibc@2.42-13?distro=trixie
purl pkg:deb/debian/glibc@2.42-13?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-nwfb-xnks-1kg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-13%3Fdistro=trixie
5
url pkg:deb/debian/glibc@2.42-14?distro=trixie
purl pkg:deb/debian/glibc@2.42-14?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-us68-psx5-zude
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-14%3Fdistro=trixie
6
url pkg:deb/debian/glibc@2.42-15?distro=trixie
purl pkg:deb/debian/glibc@2.42-15?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-15%3Fdistro=trixie
7
url pkg:ebuild/sys-libs/glibc@2.41-r5
purl pkg:ebuild/sys-libs/glibc@2.41-r5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/sys-libs/glibc@2.41-r5
Affected_packages
0
url pkg:deb/debian/glibc@2.31-13%2Bdeb11u11
purl pkg:deb/debian/glibc@2.31-13%2Bdeb11u11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-9nqp-tfvr-ayen
2
vulnerability VCID-d5xx-af6p-2fhn
3
vulnerability VCID-jswq-6ru6-wybc
4
vulnerability VCID-kukb-s61t-pbc3
5
vulnerability VCID-nwfb-xnks-1kg7
6
vulnerability VCID-ssnc-wdcf-sfc9
7
vulnerability VCID-tcpv-4crc-zuap
8
vulnerability VCID-ys5d-7xgp-w7g5
9
vulnerability VCID-zn6t-3mvb-wufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.31-13%252Bdeb11u11
1
url pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie
purl pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-9nqp-tfvr-ayen
2
vulnerability VCID-jswq-6ru6-wybc
3
vulnerability VCID-kukb-s61t-pbc3
4
vulnerability VCID-nwfb-xnks-1kg7
5
vulnerability VCID-ssnc-wdcf-sfc9
6
vulnerability VCID-tcpv-4crc-zuap
7
vulnerability VCID-us68-psx5-zude
8
vulnerability VCID-zn6t-3mvb-wufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.31-13%252Bdeb11u11%3Fdistro=trixie
2
url pkg:rpm/redhat/glibc@2.28-251.el8_10?arch=25
purl pkg:rpm/redhat/glibc@2.28-251.el8_10?arch=25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukb-s61t-pbc3
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/glibc@2.28-251.el8_10%3Farch=25
3
url pkg:rpm/redhat/glibc@2.34-168.el9_6?arch=23
purl pkg:rpm/redhat/glibc@2.34-168.el9_6?arch=23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukb-s61t-pbc3
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/glibc@2.34-168.el9_6%3Farch=23
4
url pkg:rpm/redhat/glibc@2.39-46?arch=el10_0
purl pkg:rpm/redhat/glibc@2.39-46?arch=el10_0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukb-s61t-pbc3
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/glibc@2.39-46%3Farch=el10_0
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8058.json
reference_id
reference_type
scores
0
value 4.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8058.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-8058
reference_id
reference_type
scores
0
value 0.0001
scoring_system epss
scoring_elements 0.01131
published_at 2026-04-18T12:55:00Z
1
value 8e-05
scoring_system epss
scoring_elements 0.00668
published_at 2026-04-04T12:55:00Z
2
value 8e-05
scoring_system epss
scoring_elements 0.00675
published_at 2026-04-02T12:55:00Z
3
value 8e-05
scoring_system epss
scoring_elements 0.00671
published_at 2026-04-07T12:55:00Z
4
value 9e-05
scoring_system epss
scoring_elements 0.00936
published_at 2026-04-08T12:55:00Z
5
value 9e-05
scoring_system epss
scoring_elements 0.00933
published_at 2026-04-09T12:55:00Z
6
value 9e-05
scoring_system epss
scoring_elements 0.00921
published_at 2026-04-11T12:55:00Z
7
value 9e-05
scoring_system epss
scoring_elements 0.00916
published_at 2026-04-12T12:55:00Z
8
value 9e-05
scoring_system epss
scoring_elements 0.00917
published_at 2026-04-13T12:55:00Z
9
value 9e-05
scoring_system epss
scoring_elements 0.00914
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-8058
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8058
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109803
reference_id 1109803
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109803
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2383146
reference_id 2383146
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2383146
6
reference_url https://security.gentoo.org/glsa/202509-04
reference_id GLSA-202509-04
reference_type
scores
url https://security.gentoo.org/glsa/202509-04
7
reference_url https://sourceware.org/git/?p=glibc.git;a=commit;h=3ff17af18c38727b88d9115e536c069e6b5d601f
reference_id ?p=glibc.git;a=commit;h=3ff17af18c38727b88d9115e536c069e6b5d601f
reference_type
scores
0
value 5.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:H/SC:L/SI:L/SA:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T20:07:48Z/
url https://sourceware.org/git/?p=glibc.git;a=commit;h=3ff17af18c38727b88d9115e536c069e6b5d601f
8
reference_url https://access.redhat.com/errata/RHSA-2025:12748
reference_id RHSA-2025:12748
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:12748
9
reference_url https://access.redhat.com/errata/RHSA-2025:12980
reference_id RHSA-2025:12980
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:12980
10
reference_url https://access.redhat.com/errata/RHSA-2025:13240
reference_id RHSA-2025:13240
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:13240
11
reference_url https://access.redhat.com/errata/RHSA-2025:13335
reference_id RHSA-2025:13335
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:13335
12
reference_url https://access.redhat.com/errata/RHSA-2025:13622
reference_id RHSA-2025:13622
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:13622
13
reference_url https://access.redhat.com/errata/RHSA-2025:14186
reference_id RHSA-2025:14186
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14186
14
reference_url https://access.redhat.com/errata/RHSA-2025:22529
reference_id RHSA-2025:22529
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22529
15
reference_url https://sourceware.org/bugzilla/show_bug.cgi?id=33185
reference_id show_bug.cgi?id=33185
reference_type
scores
0
value 5.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:H/SC:L/SI:L/SA:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T20:07:48Z/
url https://sourceware.org/bugzilla/show_bug.cgi?id=33185
16
reference_url https://usn.ubuntu.com/7760-1/
reference_id USN-7760-1
reference_type
scores
url https://usn.ubuntu.com/7760-1/
17
reference_url https://usn.ubuntu.com/8005-1/
reference_id USN-8005-1
reference_type
scores
url https://usn.ubuntu.com/8005-1/
Weaknesses
0
cwe_id 415
name Double Free
description The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
Exploits
Severity_range_score4.2 - 6.6
Exploitability0.5
Weighted_severity3.8
Risk_score1.9
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-kukb-s61t-pbc3