Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-k651-yq6k-cyc9
Summary
Moderate severity vulnerability that affects actionpack
Withdrawn, accidental duplicate publish.

actionpack/lib/action_dispatch/http/mime_type.rb in Action Pack in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 does not properly restrict use of the MIME type cache, which allows remote attackers to cause a denial of service (memory consumption) via a crafted HTTP Accept header.
Aliases
0
alias GHSA-m53f-rhq8-q6hf
Fixed_packages
0
url pkg:gem/actionpack@3.2.22.1
purl pkg:gem/actionpack@3.2.22.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1b9z-efz6-9fdu
1
vulnerability VCID-3edd-m27s-a3ek
2
vulnerability VCID-4w1v-z4zj-6ydp
3
vulnerability VCID-5pfg-7ntp-eff4
4
vulnerability VCID-6z21-pd9d-pfgk
5
vulnerability VCID-832g-x9kb-3bbx
6
vulnerability VCID-8nkw-8mka-1ygk
7
vulnerability VCID-98gu-r7wd-cuah
8
vulnerability VCID-a6wp-n5yh-ybcv
9
vulnerability VCID-b4sv-b9pz-r7er
10
vulnerability VCID-bfbp-7umh-2fcp
11
vulnerability VCID-brwd-e9kx-xuc2
12
vulnerability VCID-dd87-gevs-juhe
13
vulnerability VCID-eeru-6pyc-8bcd
14
vulnerability VCID-ejgq-s79w-abd6
15
vulnerability VCID-g13k-qvy7-q3fk
16
vulnerability VCID-g2a6-uem4-uuce
17
vulnerability VCID-k6aw-heeb-wke2
18
vulnerability VCID-kshz-ckjc-77ab
19
vulnerability VCID-m9ud-s6w6-x7ac
20
vulnerability VCID-mnh7-4rvx-suay
21
vulnerability VCID-n7ga-1sx4-yfcv
22
vulnerability VCID-n7kh-9mpq-13c7
23
vulnerability VCID-nmz3-ux68-dkfd
24
vulnerability VCID-p1yd-keq8-rkh3
25
vulnerability VCID-qth9-abgp-wyaq
26
vulnerability VCID-v2hk-dfbe-5khc
27
vulnerability VCID-v4sh-tkkf-xfeh
28
vulnerability VCID-z16b-zfgu-13a9
29
vulnerability VCID-zapd-uts9-zfch
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@3.2.22.1
1
url pkg:gem/actionpack@4.1.14.1
purl pkg:gem/actionpack@4.1.14.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1b9z-efz6-9fdu
1
vulnerability VCID-3edd-m27s-a3ek
2
vulnerability VCID-4w1v-z4zj-6ydp
3
vulnerability VCID-5pfg-7ntp-eff4
4
vulnerability VCID-6z21-pd9d-pfgk
5
vulnerability VCID-832g-x9kb-3bbx
6
vulnerability VCID-8nkw-8mka-1ygk
7
vulnerability VCID-98gu-r7wd-cuah
8
vulnerability VCID-a6wp-n5yh-ybcv
9
vulnerability VCID-bfbp-7umh-2fcp
10
vulnerability VCID-brwd-e9kx-xuc2
11
vulnerability VCID-dd87-gevs-juhe
12
vulnerability VCID-eeru-6pyc-8bcd
13
vulnerability VCID-ejgq-s79w-abd6
14
vulnerability VCID-g13k-qvy7-q3fk
15
vulnerability VCID-g2a6-uem4-uuce
16
vulnerability VCID-k6aw-heeb-wke2
17
vulnerability VCID-kshz-ckjc-77ab
18
vulnerability VCID-m9ud-s6w6-x7ac
19
vulnerability VCID-mnh7-4rvx-suay
20
vulnerability VCID-n7ga-1sx4-yfcv
21
vulnerability VCID-n7kh-9mpq-13c7
22
vulnerability VCID-nmz3-ux68-dkfd
23
vulnerability VCID-p1yd-keq8-rkh3
24
vulnerability VCID-qth9-abgp-wyaq
25
vulnerability VCID-v2hk-dfbe-5khc
26
vulnerability VCID-v4sh-tkkf-xfeh
27
vulnerability VCID-z16b-zfgu-13a9
28
vulnerability VCID-zapd-uts9-zfch
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.1.14.1
2
url pkg:gem/actionpack@4.2.5.1
purl pkg:gem/actionpack@4.2.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1b9z-efz6-9fdu
1
vulnerability VCID-3edd-m27s-a3ek
2
vulnerability VCID-4w1v-z4zj-6ydp
3
vulnerability VCID-5pfg-7ntp-eff4
4
vulnerability VCID-6z21-pd9d-pfgk
5
vulnerability VCID-8nkw-8mka-1ygk
6
vulnerability VCID-98gu-r7wd-cuah
7
vulnerability VCID-a6wp-n5yh-ybcv
8
vulnerability VCID-bfbp-7umh-2fcp
9
vulnerability VCID-brwd-e9kx-xuc2
10
vulnerability VCID-dd87-gevs-juhe
11
vulnerability VCID-eeru-6pyc-8bcd
12
vulnerability VCID-ejgq-s79w-abd6
13
vulnerability VCID-g13k-qvy7-q3fk
14
vulnerability VCID-g2a6-uem4-uuce
15
vulnerability VCID-k6aw-heeb-wke2
16
vulnerability VCID-kshz-ckjc-77ab
17
vulnerability VCID-m9ud-s6w6-x7ac
18
vulnerability VCID-mnh7-4rvx-suay
19
vulnerability VCID-n7ga-1sx4-yfcv
20
vulnerability VCID-n7kh-9mpq-13c7
21
vulnerability VCID-nmz3-ux68-dkfd
22
vulnerability VCID-p1yd-keq8-rkh3
23
vulnerability VCID-qth9-abgp-wyaq
24
vulnerability VCID-v2hk-dfbe-5khc
25
vulnerability VCID-v4sh-tkkf-xfeh
26
vulnerability VCID-z16b-zfgu-13a9
27
vulnerability VCID-zapd-uts9-zfch
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.5.1
Affected_packages
0
url pkg:gem/actionpack@3.2.22.0
purl pkg:gem/actionpack@3.2.22.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-k651-yq6k-cyc9
1
vulnerability VCID-p2yz-5pzq-nyag
2
vulnerability VCID-r6mr-ay8d-nqdd
3
vulnerability VCID-y13c-awe3-2bc1
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@3.2.22.0
1
url pkg:gem/actionpack@4.0.0
purl pkg:gem/actionpack@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-123f-6px7-3qdg
1
vulnerability VCID-1b9z-efz6-9fdu
2
vulnerability VCID-3edd-m27s-a3ek
3
vulnerability VCID-3rn4-abmh-nkhv
4
vulnerability VCID-4w1v-z4zj-6ydp
5
vulnerability VCID-5az9-zqff-5kav
6
vulnerability VCID-5pfg-7ntp-eff4
7
vulnerability VCID-5psk-hzaf-1kbz
8
vulnerability VCID-6z21-pd9d-pfgk
9
vulnerability VCID-832g-x9kb-3bbx
10
vulnerability VCID-8nkw-8mka-1ygk
11
vulnerability VCID-8p57-4fhz-v3gh
12
vulnerability VCID-98gu-r7wd-cuah
13
vulnerability VCID-a6wp-n5yh-ybcv
14
vulnerability VCID-bfbp-7umh-2fcp
15
vulnerability VCID-brwd-e9kx-xuc2
16
vulnerability VCID-cs1f-uhb2-xkcm
17
vulnerability VCID-dd87-gevs-juhe
18
vulnerability VCID-eeru-6pyc-8bcd
19
vulnerability VCID-ejgq-s79w-abd6
20
vulnerability VCID-g13k-qvy7-q3fk
21
vulnerability VCID-g2a6-uem4-uuce
22
vulnerability VCID-hh65-ycrj-d7gz
23
vulnerability VCID-hvua-jhzn-97fr
24
vulnerability VCID-k651-yq6k-cyc9
25
vulnerability VCID-k6aw-heeb-wke2
26
vulnerability VCID-kshz-ckjc-77ab
27
vulnerability VCID-m156-zkzd-57g9
28
vulnerability VCID-m9ud-s6w6-x7ac
29
vulnerability VCID-mnh7-4rvx-suay
30
vulnerability VCID-n7ga-1sx4-yfcv
31
vulnerability VCID-n7kh-9mpq-13c7
32
vulnerability VCID-nax4-x97j-9fgr
33
vulnerability VCID-nmz3-ux68-dkfd
34
vulnerability VCID-nnka-c23v-qub7
35
vulnerability VCID-p1yd-keq8-rkh3
36
vulnerability VCID-p2yz-5pzq-nyag
37
vulnerability VCID-qth9-abgp-wyaq
38
vulnerability VCID-r6mr-ay8d-nqdd
39
vulnerability VCID-rnnm-ck7u-fydy
40
vulnerability VCID-sg9h-7dqr-xugu
41
vulnerability VCID-v2hk-dfbe-5khc
42
vulnerability VCID-v3u5-6bpb-qfgf
43
vulnerability VCID-v4sh-tkkf-xfeh
44
vulnerability VCID-vs1a-m7ya-rue8
45
vulnerability VCID-y13c-awe3-2bc1
46
vulnerability VCID-z16b-zfgu-13a9
47
vulnerability VCID-zapd-uts9-zfch
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.0.0
2
url pkg:gem/actionpack@4.1.14.0
purl pkg:gem/actionpack@4.1.14.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-123f-6px7-3qdg
1
vulnerability VCID-5az9-zqff-5kav
2
vulnerability VCID-k651-yq6k-cyc9
3
vulnerability VCID-p2yz-5pzq-nyag
4
vulnerability VCID-r6mr-ay8d-nqdd
5
vulnerability VCID-y13c-awe3-2bc1
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.1.14.0
3
url pkg:gem/actionpack@4.2.0
purl pkg:gem/actionpack@4.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-123f-6px7-3qdg
1
vulnerability VCID-1b9z-efz6-9fdu
2
vulnerability VCID-3edd-m27s-a3ek
3
vulnerability VCID-4w1v-z4zj-6ydp
4
vulnerability VCID-5az9-zqff-5kav
5
vulnerability VCID-5pfg-7ntp-eff4
6
vulnerability VCID-6z21-pd9d-pfgk
7
vulnerability VCID-8nkw-8mka-1ygk
8
vulnerability VCID-98gu-r7wd-cuah
9
vulnerability VCID-a6wp-n5yh-ybcv
10
vulnerability VCID-bfbp-7umh-2fcp
11
vulnerability VCID-brwd-e9kx-xuc2
12
vulnerability VCID-dd87-gevs-juhe
13
vulnerability VCID-eeru-6pyc-8bcd
14
vulnerability VCID-ejgq-s79w-abd6
15
vulnerability VCID-g13k-qvy7-q3fk
16
vulnerability VCID-g2a6-uem4-uuce
17
vulnerability VCID-k651-yq6k-cyc9
18
vulnerability VCID-k6aw-heeb-wke2
19
vulnerability VCID-kshz-ckjc-77ab
20
vulnerability VCID-m156-zkzd-57g9
21
vulnerability VCID-m9ud-s6w6-x7ac
22
vulnerability VCID-mnh7-4rvx-suay
23
vulnerability VCID-n7ga-1sx4-yfcv
24
vulnerability VCID-n7kh-9mpq-13c7
25
vulnerability VCID-nmz3-ux68-dkfd
26
vulnerability VCID-p1yd-keq8-rkh3
27
vulnerability VCID-p2yz-5pzq-nyag
28
vulnerability VCID-qth9-abgp-wyaq
29
vulnerability VCID-r6mr-ay8d-nqdd
30
vulnerability VCID-v2hk-dfbe-5khc
31
vulnerability VCID-v4sh-tkkf-xfeh
32
vulnerability VCID-y13c-awe3-2bc1
33
vulnerability VCID-z16b-zfgu-13a9
34
vulnerability VCID-zapd-uts9-zfch
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.0
4
url pkg:gem/actionpack@4.2.5.0
purl pkg:gem/actionpack@4.2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-123f-6px7-3qdg
1
vulnerability VCID-5az9-zqff-5kav
2
vulnerability VCID-k651-yq6k-cyc9
3
vulnerability VCID-m156-zkzd-57g9
4
vulnerability VCID-p2yz-5pzq-nyag
5
vulnerability VCID-r6mr-ay8d-nqdd
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.5.0
References
0
reference_url https://github.com/advisories/GHSA-m53f-rhq8-q6hf
reference_id
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-m53f-rhq8-q6hf
1
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-0751
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-0751
Weaknesses
Exploits
Severity_range_score4.0 - 6.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-k651-yq6k-cyc9