Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-7n8z-mhbn-xudt

Summary

Multiple vulnerabilities have been found in BIND, the worst of
    which allows remote attackers to cause a Denial of Service condition.

Aliases

alias	CVE-2016-9778

Fixed_packages

url pkg:alpm/archlinux/bind@9.11.0.P2-1

purl pkg:alpm/archlinux/bind@9.11.0.P2-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xatr-hnmn-mfbj

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/bind@9.11.0.P2-1

url	pkg:deb/debian/bind9@0?distro=trixie
purl	pkg:deb/debian/bind9@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@0%3Fdistro=trixie

url pkg:deb/debian/bind9@1:9.16.50-1~deb11u2?distro=trixie

purl pkg:deb/debian/bind9@1:9.16.50-1~deb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d9np-47r3-rkg1

vulnerability	VCID-gdhz-6yzf-afda

vulnerability	VCID-unqt-mcxv-c7fw

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.16.50-1~deb11u2%3Fdistro=trixie

url pkg:deb/debian/bind9@1:9.18.41-1~deb12u1?distro=trixie

purl pkg:deb/debian/bind9@1:9.18.41-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d9np-47r3-rkg1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.18.41-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/bind9@1:9.20.18-1~deb13u1?distro=trixie
purl	pkg:deb/debian/bind9@1:9.20.18-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.20.18-1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/bind9@1:9.20.21-1?distro=trixie
purl	pkg:deb/debian/bind9@1:9.20.21-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.20.21-1%3Fdistro=trixie

url	pkg:deb/debian/bind9@1:9.20.22-1?distro=trixie
purl	pkg:deb/debian/bind9@1:9.20.22-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.20.22-1%3Fdistro=trixie

url	pkg:ebuild/net-dns/bind@9.11.1_p1
purl	pkg:ebuild/net-dns/bind@9.11.1_p1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-dns/bind@9.11.1_p1

Affected_packages

url pkg:alpm/archlinux/bind@9.11.0.P1-3

purl pkg:alpm/archlinux/bind@9.11.0.P1-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5jpj-6zqd-3ub9

vulnerability	VCID-7n8z-mhbn-xudt

vulnerability	VCID-s4q2-n72q-vuhh

vulnerability	VCID-uze1-hja3-kubc

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/bind@9.11.0.P1-3

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9778.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9778.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9778

reference_id

reference_type

scores

value	0.0542
scoring_system	epss
scoring_elements	0.90169
published_at	2026-04-18T12:55:00Z

value	0.06614
scoring_system	epss
scoring_elements	0.91132
published_at	2026-04-01T12:55:00Z

value	0.06614
scoring_system	epss
scoring_elements	0.91153
published_at	2026-04-07T12:55:00Z

value	0.06614
scoring_system	epss
scoring_elements	0.91166
published_at	2026-04-08T12:55:00Z

value	0.06614
scoring_system	epss
scoring_elements	0.91173
published_at	2026-04-09T12:55:00Z

value	0.06614
scoring_system	epss
scoring_elements	0.9118
published_at	2026-04-11T12:55:00Z

value	0.06614
scoring_system	epss
scoring_elements	0.91182
published_at	2026-04-13T12:55:00Z

value	0.06614
scoring_system	epss
scoring_elements	0.91137
published_at	2026-04-02T12:55:00Z

value	0.06614
scoring_system	epss
scoring_elements	0.91145
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9778

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:C

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://kb.isc.org/article/AA-01442/
reference_id
reference_type
scores
url	https://kb.isc.org/article/AA-01442/

reference_url	https://security.netapp.com/advisory/ntap-20180926-0005/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20180926-0005/

reference_url	http://www.securityfocus.com/bid/95388
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/95388

reference_url	http://www.securitytracker.com/id/1037582
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1037582

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1411387
reference_id	1411387
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1411387

reference_url	https://security.archlinux.org/ASA-201701-15
reference_id	ASA-201701-15
reference_type
scores
url	https://security.archlinux.org/ASA-201701-15

reference_url

https://security.archlinux.org/AVG-132

reference_id

AVG-132

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-132

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.11.0:::::::*
reference_id	cpe:2.3:a:isc:bind:9.11.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.11.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.11.0:p1::::::
reference_id	cpe:2.3:a:isc:bind:9.11.0:p1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.11.0:p1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.8:s1::::::
reference_id	cpe:2.3:a:isc:bind:9.9.8:s1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.8:s1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.8:s2::::::
reference_id	cpe:2.3:a:isc:bind:9.9.8:s2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.8:s2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.8:s3::::::
reference_id	cpe:2.3:a:isc:bind:9.9.8:s3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.8:s3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.9:s1::::::
reference_id	cpe:2.3:a:isc:bind:9.9.9:s1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.9:s1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.9:s6::::::
reference_id	cpe:2.3:a:isc:bind:9.9.9:s6::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:isc:bind:9.9.9:s6::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:data_ontap_edge:-:::::::*
reference_id	cpe:2.3:a:netapp:data_ontap_edge:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:data_ontap_edge:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:solidfire_element_os_management_node:-:::::::*
reference_id	cpe:2.3:a:netapp:solidfire_element_os_management_node:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:solidfire_element_os_management_node:-:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-9778

reference_id

CVE-2016-9778

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2016-9778

reference_url	https://security.gentoo.org/glsa/201708-01
reference_id	GLSA-201708-01
reference_type
scores
url	https://security.gentoo.org/glsa/201708-01

Weaknesses

cwe_id	388
name	7PK - Errors
description	This category represents one of the phyla in the Seven Pernicious Kingdoms vulnerability classification. It includes weaknesses that occur when an application does not properly handle errors that occur during processing. According to the authors of the Seven Pernicious Kingdoms, "Errors and error handling represent a class of API. Errors related to error handling are so common that they deserve a special kingdom of their own. As with 'API Abuse,' there are two ways to introduce an error-related security vulnerability: the most common one is handling errors poorly (or not at all). The second is producing errors that either give out too much information (to possible attackers) or are difficult to handle."

Exploits

Severity_range_score 4.3 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7n8z-mhbn-xudt

Vulnerability Instance