Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-q3n2-67dg-mkgg
SummaryMultiple vulnerabilities have been discovered in Samba, the worst of which could result in root remote code execution.
Aliases
0
alias CVE-2020-17049
Fixed_packages
0
url pkg:ebuild/net-fs/samba@4.18.4
purl pkg:ebuild/net-fs/samba@4.18.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/net-fs/samba@4.18.4
Affected_packages
0
url pkg:rpm/redhat/krb5@1.20.1-8?arch=el9
purl pkg:rpm/redhat/krb5@1.20.1-8?arch=el9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-q3n2-67dg-mkgg
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/krb5@1.20.1-8%3Farch=el9
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17049.json
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17049.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-17049
reference_id
reference_type
scores
0
value 0.248
scoring_system epss
scoring_elements 0.96128
published_at 2026-04-04T12:55:00Z
1
value 0.248
scoring_system epss
scoring_elements 0.96114
published_at 2026-04-01T12:55:00Z
2
value 0.248
scoring_system epss
scoring_elements 0.96121
published_at 2026-04-02T12:55:00Z
3
value 0.248
scoring_system epss
scoring_elements 0.96132
published_at 2026-04-07T12:55:00Z
4
value 0.267
scoring_system epss
scoring_elements 0.96356
published_at 2026-04-21T12:55:00Z
5
value 0.267
scoring_system epss
scoring_elements 0.96332
published_at 2026-04-08T12:55:00Z
6
value 0.267
scoring_system epss
scoring_elements 0.96335
published_at 2026-04-09T12:55:00Z
7
value 0.267
scoring_system epss
scoring_elements 0.96339
published_at 2026-04-12T12:55:00Z
8
value 0.267
scoring_system epss
scoring_elements 0.96342
published_at 2026-04-13T12:55:00Z
9
value 0.267
scoring_system epss
scoring_elements 0.9635
published_at 2026-04-16T12:55:00Z
10
value 0.267
scoring_system epss
scoring_elements 0.96355
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-17049
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2025721
reference_id 2025721
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2025721
4
reference_url http://www.openwall.com/lists/oss-security/2021/11/10/3
reference_id 3
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-15T16:12:34Z/
url http://www.openwall.com/lists/oss-security/2021/11/10/3
5
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*
reference_id cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
reference_id cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1110:*:*:*:*:*:*:*
reference_id cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1110:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1110:*:*:*:*:*:*:*
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25661:*:*:*:*:*:x64:*
reference_id cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25661:*:*:*:*:*:x64:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25661:*:*:*:*:*:x64:*
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x64:*
reference_id cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x64:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x64:*
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x86:*
reference_id cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x86:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x86:*
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23409:*:*:*:*:*:x64:*
reference_id cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23409:*:*:*:*:*:x64:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23409:*:*:*:*:*:x64:*
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20069:*:*:*:*:*:x64:*
reference_id cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20069:*:*:*:*:*:x64:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20069:*:*:*:*:*:x64:*
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4530:*:*:*:*:*:*:*
reference_id cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4530:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4530:*:*:*:*:*:*:*
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2061:*:*:*:*:*:*:*
reference_id cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2061:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2061:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_20H2:10.0.19041.1110:*:*:*:*:*:*:*
reference_id cpe:2.3:o:microsoft:windows_server_20H2:10.0.19041.1110:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_server_20H2:10.0.19041.1110:*:*:*:*:*:*:*
16
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17049
reference_id CVE-2020-17049
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-15T16:12:34Z/
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17049
17
reference_url https://security.gentoo.org/glsa/202309-06
reference_id GLSA-202309-06
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-15T16:12:34Z/
url https://security.gentoo.org/glsa/202309-06
18
reference_url https://access.redhat.com/errata/RHSA-2023:2570
reference_id RHSA-2023:2570
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2570
19
reference_url https://access.redhat.com/errata/RHSA-2024:0137
reference_id RHSA-2024:0137
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0137
20
reference_url https://access.redhat.com/errata/RHSA-2024:0139
reference_id RHSA-2024:0139
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0139
21
reference_url https://access.redhat.com/errata/RHSA-2024:0143
reference_id RHSA-2024:0143
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0143
Weaknesses
0
cwe_id 345
name Insufficient Verification of Data Authenticity
description The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.
Exploits
Severity_range_score6.6 - 7.2
Exploitability0.5
Weighted_severity6.5
Risk_score3.2
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-q3n2-67dg-mkgg