Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-f9da-9x6z-kqcv
Summary
A buffer overflow in rsync might lead to the remote execution of arbitrary
    code when extended attributes are being used.
Aliases
0
alias CVE-2008-1720
Fixed_packages
0
url pkg:deb/debian/rsync@3.0.2-1?distro=trixie
purl pkg:deb/debian/rsync@3.0.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.0.2-1%3Fdistro=trixie
1
url pkg:deb/debian/rsync@3.0.3-2
purl pkg:deb/debian/rsync@3.0.3-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-472y-7aza-j7c4
3
vulnerability VCID-4g8w-n139-dfbn
4
vulnerability VCID-66n1-gnxa-2uf3
5
vulnerability VCID-78yq-gu4t-rke9
6
vulnerability VCID-9d7g-bby6-8fb3
7
vulnerability VCID-c1ec-hvuv-ckgk
8
vulnerability VCID-eyjp-7kks-jbfr
9
vulnerability VCID-f6ja-7k85-j7aa
10
vulnerability VCID-h2jt-8ppk-nbh9
11
vulnerability VCID-m6xx-a91r-sbhu
12
vulnerability VCID-mr6h-6jrp-gyf3
13
vulnerability VCID-q576-uw5g-8kh3
14
vulnerability VCID-qwud-4v7w-43dv
15
vulnerability VCID-smft-ms93-6kf1
16
vulnerability VCID-y5ep-xtwr-ckg6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.0.3-2
2
url pkg:deb/debian/rsync@3.2.3-4%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/rsync@3.2.3-4%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4g3g-qmrg-tbf6
1
vulnerability VCID-ua8q-v9qd-wqb5
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.2.3-4%252Bdeb11u1%3Fdistro=trixie
3
url pkg:deb/debian/rsync@3.2.7-1%2Bdeb12u4?distro=trixie
purl pkg:deb/debian/rsync@3.2.7-1%2Bdeb12u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.2.7-1%252Bdeb12u4%3Fdistro=trixie
4
url pkg:deb/debian/rsync@3.4.1%2Bds1-5%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/rsync@3.4.1%2Bds1-5%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.4.1%252Bds1-5%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/rsync@3.4.1%2Bds1-7?distro=trixie
purl pkg:deb/debian/rsync@3.4.1%2Bds1-7?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@3.4.1%252Bds1-7%3Fdistro=trixie
6
url pkg:ebuild/net-misc/rsync@2.6.9-r6
purl pkg:ebuild/net-misc/rsync@2.6.9-r6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/net-misc/rsync@2.6.9-r6
Affected_packages
0
url pkg:deb/debian/rsync@1.6.9-1
purl pkg:deb/debian/rsync@1.6.9-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-c8h5-wzqz-e3c6
10
vulnerability VCID-eyjp-7kks-jbfr
11
vulnerability VCID-f6ja-7k85-j7aa
12
vulnerability VCID-f9da-9x6z-kqcv
13
vulnerability VCID-h2jt-8ppk-nbh9
14
vulnerability VCID-m6xx-a91r-sbhu
15
vulnerability VCID-mr6h-6jrp-gyf3
16
vulnerability VCID-pfb2-95fp-7bbm
17
vulnerability VCID-q576-uw5g-8kh3
18
vulnerability VCID-qwud-4v7w-43dv
19
vulnerability VCID-rp3f-utn4-ubb7
20
vulnerability VCID-smft-ms93-6kf1
21
vulnerability VCID-su3r-5r3f-fbfr
22
vulnerability VCID-ty4c-hwkm-uqes
23
vulnerability VCID-y5ep-xtwr-ckg6
24
vulnerability VCID-yd1c-ptsv-hffu
25
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@1.6.9-1
1
url pkg:deb/debian/rsync@2.3.1-0.slink.1
purl pkg:deb/debian/rsync@2.3.1-0.slink.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-c8h5-wzqz-e3c6
10
vulnerability VCID-eyjp-7kks-jbfr
11
vulnerability VCID-f6ja-7k85-j7aa
12
vulnerability VCID-f9da-9x6z-kqcv
13
vulnerability VCID-h2jt-8ppk-nbh9
14
vulnerability VCID-m6xx-a91r-sbhu
15
vulnerability VCID-mr6h-6jrp-gyf3
16
vulnerability VCID-pfb2-95fp-7bbm
17
vulnerability VCID-q576-uw5g-8kh3
18
vulnerability VCID-qwud-4v7w-43dv
19
vulnerability VCID-rp3f-utn4-ubb7
20
vulnerability VCID-smft-ms93-6kf1
21
vulnerability VCID-su3r-5r3f-fbfr
22
vulnerability VCID-ty4c-hwkm-uqes
23
vulnerability VCID-y5ep-xtwr-ckg6
24
vulnerability VCID-yd1c-ptsv-hffu
25
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.3.1-0.slink.1
2
url pkg:deb/debian/rsync@2.3.2-1.2
purl pkg:deb/debian/rsync@2.3.2-1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-c8h5-wzqz-e3c6
10
vulnerability VCID-eyjp-7kks-jbfr
11
vulnerability VCID-f6ja-7k85-j7aa
12
vulnerability VCID-f9da-9x6z-kqcv
13
vulnerability VCID-h2jt-8ppk-nbh9
14
vulnerability VCID-m6xx-a91r-sbhu
15
vulnerability VCID-mr6h-6jrp-gyf3
16
vulnerability VCID-pfb2-95fp-7bbm
17
vulnerability VCID-q576-uw5g-8kh3
18
vulnerability VCID-qwud-4v7w-43dv
19
vulnerability VCID-rp3f-utn4-ubb7
20
vulnerability VCID-smft-ms93-6kf1
21
vulnerability VCID-su3r-5r3f-fbfr
22
vulnerability VCID-ty4c-hwkm-uqes
23
vulnerability VCID-y5ep-xtwr-ckg6
24
vulnerability VCID-yd1c-ptsv-hffu
25
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.3.2-1.2
3
url pkg:deb/debian/rsync@2.5.5-0.6
purl pkg:deb/debian/rsync@2.5.5-0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-c8h5-wzqz-e3c6
10
vulnerability VCID-eyjp-7kks-jbfr
11
vulnerability VCID-f6ja-7k85-j7aa
12
vulnerability VCID-f9da-9x6z-kqcv
13
vulnerability VCID-h2jt-8ppk-nbh9
14
vulnerability VCID-m6xx-a91r-sbhu
15
vulnerability VCID-mr6h-6jrp-gyf3
16
vulnerability VCID-pfb2-95fp-7bbm
17
vulnerability VCID-q576-uw5g-8kh3
18
vulnerability VCID-qwud-4v7w-43dv
19
vulnerability VCID-rp3f-utn4-ubb7
20
vulnerability VCID-smft-ms93-6kf1
21
vulnerability VCID-su3r-5r3f-fbfr
22
vulnerability VCID-ty4c-hwkm-uqes
23
vulnerability VCID-y5ep-xtwr-ckg6
24
vulnerability VCID-yd1c-ptsv-hffu
25
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.5.5-0.6
4
url pkg:deb/debian/rsync@2.6.4-6
purl pkg:deb/debian/rsync@2.6.4-6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-eyjp-7kks-jbfr
10
vulnerability VCID-f6ja-7k85-j7aa
11
vulnerability VCID-f9da-9x6z-kqcv
12
vulnerability VCID-h2jt-8ppk-nbh9
13
vulnerability VCID-m6xx-a91r-sbhu
14
vulnerability VCID-mr6h-6jrp-gyf3
15
vulnerability VCID-pfb2-95fp-7bbm
16
vulnerability VCID-q576-uw5g-8kh3
17
vulnerability VCID-qwud-4v7w-43dv
18
vulnerability VCID-smft-ms93-6kf1
19
vulnerability VCID-y5ep-xtwr-ckg6
20
vulnerability VCID-yd1c-ptsv-hffu
21
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.6.4-6
5
url pkg:deb/debian/rsync@2.6.9-2
purl pkg:deb/debian/rsync@2.6.9-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-eyjp-7kks-jbfr
10
vulnerability VCID-f6ja-7k85-j7aa
11
vulnerability VCID-f9da-9x6z-kqcv
12
vulnerability VCID-h2jt-8ppk-nbh9
13
vulnerability VCID-m6xx-a91r-sbhu
14
vulnerability VCID-mr6h-6jrp-gyf3
15
vulnerability VCID-q576-uw5g-8kh3
16
vulnerability VCID-qwud-4v7w-43dv
17
vulnerability VCID-smft-ms93-6kf1
18
vulnerability VCID-y5ep-xtwr-ckg6
19
vulnerability VCID-yd1c-ptsv-hffu
20
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.6.9-2
6
url pkg:deb/debian/rsync@2.6.9-2etch2
purl pkg:deb/debian/rsync@2.6.9-2etch2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dp2-jcqh-7ket
1
vulnerability VCID-1snq-bkw3-3kff
2
vulnerability VCID-2phq-g3rz-2be8
3
vulnerability VCID-472y-7aza-j7c4
4
vulnerability VCID-4g8w-n139-dfbn
5
vulnerability VCID-66n1-gnxa-2uf3
6
vulnerability VCID-78yq-gu4t-rke9
7
vulnerability VCID-9d7g-bby6-8fb3
8
vulnerability VCID-c1ec-hvuv-ckgk
9
vulnerability VCID-eyjp-7kks-jbfr
10
vulnerability VCID-f6ja-7k85-j7aa
11
vulnerability VCID-f9da-9x6z-kqcv
12
vulnerability VCID-h2jt-8ppk-nbh9
13
vulnerability VCID-m6xx-a91r-sbhu
14
vulnerability VCID-mr6h-6jrp-gyf3
15
vulnerability VCID-q576-uw5g-8kh3
16
vulnerability VCID-qwud-4v7w-43dv
17
vulnerability VCID-smft-ms93-6kf1
18
vulnerability VCID-y5ep-xtwr-ckg6
19
vulnerability VCID-yd1c-ptsv-hffu
20
vulnerability VCID-zr3m-d432-vqge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsync@2.6.9-2etch2
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1720.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1720.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2008-1720
reference_id
reference_type
scores
0
value 0.08442
scoring_system epss
scoring_elements 0.9231
published_at 2026-04-01T12:55:00Z
1
value 0.08442
scoring_system epss
scoring_elements 0.92317
published_at 2026-04-02T12:55:00Z
2
value 0.08442
scoring_system epss
scoring_elements 0.92323
published_at 2026-04-04T12:55:00Z
3
value 0.08442
scoring_system epss
scoring_elements 0.92326
published_at 2026-04-07T12:55:00Z
4
value 0.08442
scoring_system epss
scoring_elements 0.92337
published_at 2026-04-08T12:55:00Z
5
value 0.08442
scoring_system epss
scoring_elements 0.92342
published_at 2026-04-09T12:55:00Z
6
value 0.08442
scoring_system epss
scoring_elements 0.92347
published_at 2026-04-11T12:55:00Z
7
value 0.08442
scoring_system epss
scoring_elements 0.92349
published_at 2026-04-12T12:55:00Z
8
value 0.08442
scoring_system epss
scoring_elements 0.92346
published_at 2026-04-13T12:55:00Z
9
value 0.08442
scoring_system epss
scoring_elements 0.92358
published_at 2026-04-16T12:55:00Z
10
value 0.08442
scoring_system epss
scoring_elements 0.92357
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2008-1720
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1720
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1720
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=441683
reference_id 441683
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=441683
4
reference_url https://security.gentoo.org/glsa/200804-16
reference_id GLSA-200804-16
reference_type
scores
url https://security.gentoo.org/glsa/200804-16
5
reference_url https://usn.ubuntu.com/600-1/
reference_id USN-600-1
reference_type
scores
url https://usn.ubuntu.com/600-1/
Weaknesses
0
cwe_id 190
name Integer Overflow or Wraparound
description The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
Exploits
Severity_range_scorenull
Exploitability0.5
Weighted_severity0.1
Risk_score0.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-f9da-9x6z-kqcv