Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-mfqk-y4g4-sfa5

Summary

Multiple vulnerabilities have been found in HPLIP, the worst of
    which may allow execution of arbitrary code.

Aliases

alias	CVE-2010-4267

Fixed_packages

url	pkg:deb/debian/hplip@3.10.6-2?distro=trixie
purl	pkg:deb/debian/hplip@3.10.6-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/hplip@3.10.6-2%3Fdistro=trixie

url pkg:deb/debian/hplip@3.10.6-2%2Bsqueeze2

purl pkg:deb/debian/hplip@3.10.6-2%2Bsqueeze2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ajy8-wz5n-mfb2

vulnerability	VCID-e7ce-ncn2-87dd

vulnerability	VCID-f2yg-yaaj-uub1

vulnerability	VCID-f39n-wae1-n3cc

vulnerability	VCID-k8hw-71wj-dygy

vulnerability	VCID-m5z3-fsqw-nue1

vulnerability	VCID-y2pa-cbhj-r7az

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hplip@3.10.6-2%252Bsqueeze2

url	pkg:deb/debian/hplip@3.21.2%2Bdfsg1-2?distro=trixie
purl	pkg:deb/debian/hplip@3.21.2%2Bdfsg1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/hplip@3.21.2%252Bdfsg1-2%3Fdistro=trixie

url	pkg:deb/debian/hplip@3.22.10%2Bdfsg0-2?distro=trixie
purl	pkg:deb/debian/hplip@3.22.10%2Bdfsg0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/hplip@3.22.10%252Bdfsg0-2%3Fdistro=trixie

url	pkg:deb/debian/hplip@3.22.10%2Bdfsg0-8.1?distro=trixie
purl	pkg:deb/debian/hplip@3.22.10%2Bdfsg0-8.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/hplip@3.22.10%252Bdfsg0-8.1%3Fdistro=trixie

url	pkg:ebuild/net-print/hplip@3.11.10
purl	pkg:ebuild/net-print/hplip@3.11.10
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-print/hplip@3.11.10

Affected_packages

url pkg:deb/debian/hplip@0.9.2-2

purl pkg:deb/debian/hplip@0.9.2-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8e1n-19ca-ayb4

vulnerability	VCID-a7h1-7a1g-vqa6

vulnerability	VCID-ajy8-wz5n-mfb2

vulnerability	VCID-cnxw-4ree-g3ez

vulnerability	VCID-e7ce-ncn2-87dd

vulnerability	VCID-f2yg-yaaj-uub1

vulnerability	VCID-f39n-wae1-n3cc

vulnerability	VCID-f3w3-w65v-hyhm

vulnerability	VCID-k8hw-71wj-dygy

vulnerability	VCID-m5z3-fsqw-nue1

vulnerability	VCID-mfqk-y4g4-sfa5

vulnerability	VCID-y2pa-cbhj-r7az

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hplip@0.9.2-2

url pkg:deb/debian/hplip@1.6.10-3

purl pkg:deb/debian/hplip@1.6.10-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8e1n-19ca-ayb4

vulnerability	VCID-a7h1-7a1g-vqa6

vulnerability	VCID-ajy8-wz5n-mfb2

vulnerability	VCID-cnxw-4ree-g3ez

vulnerability	VCID-e7ce-ncn2-87dd

vulnerability	VCID-f2yg-yaaj-uub1

vulnerability	VCID-f39n-wae1-n3cc

vulnerability	VCID-f3w3-w65v-hyhm

vulnerability	VCID-k8hw-71wj-dygy

vulnerability	VCID-m5z3-fsqw-nue1

vulnerability	VCID-mfqk-y4g4-sfa5

vulnerability	VCID-y2pa-cbhj-r7az

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hplip@1.6.10-3

url pkg:deb/debian/hplip@1.6.10-3etch1

purl pkg:deb/debian/hplip@1.6.10-3etch1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8e1n-19ca-ayb4

vulnerability	VCID-a7h1-7a1g-vqa6

vulnerability	VCID-ajy8-wz5n-mfb2

vulnerability	VCID-cnxw-4ree-g3ez

vulnerability	VCID-e7ce-ncn2-87dd

vulnerability	VCID-f2yg-yaaj-uub1

vulnerability	VCID-f39n-wae1-n3cc

vulnerability	VCID-f3w3-w65v-hyhm

vulnerability	VCID-k8hw-71wj-dygy

vulnerability	VCID-m5z3-fsqw-nue1

vulnerability	VCID-mfqk-y4g4-sfa5

vulnerability	VCID-y2pa-cbhj-r7az

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hplip@1.6.10-3etch1

url pkg:deb/debian/hplip@2.8.6.b-4%2Blenny1

purl pkg:deb/debian/hplip@2.8.6.b-4%2Blenny1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8e1n-19ca-ayb4

vulnerability	VCID-ajy8-wz5n-mfb2

vulnerability	VCID-e7ce-ncn2-87dd

vulnerability	VCID-f2yg-yaaj-uub1

vulnerability	VCID-f39n-wae1-n3cc

vulnerability	VCID-k8hw-71wj-dygy

vulnerability	VCID-m5z3-fsqw-nue1

vulnerability	VCID-mfqk-y4g4-sfa5

vulnerability	VCID-y2pa-cbhj-r7az

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hplip@2.8.6.b-4%252Blenny1

url pkg:rpm/redhat/hplip@1.6.7-6.el5_6?arch=1

purl pkg:rpm/redhat/hplip@1.6.7-6.el5_6?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mfqk-y4g4-sfa5

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hplip@1.6.7-6.el5_6%3Farch=1

url pkg:rpm/redhat/hplip@3.9.8-33.el6_0?arch=1

purl pkg:rpm/redhat/hplip@3.9.8-33.el6_0?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mfqk-y4g4-sfa5

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hplip@3.9.8-33.el6_0%3Farch=1

url pkg:rpm/redhat/hplip3@3.9.8-11.el5_6?arch=1

purl pkg:rpm/redhat/hplip3@3.9.8-11.el5_6?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mfqk-y4g4-sfa5

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hplip3@3.9.8-11.el5_6%3Farch=1

References

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053472.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053472.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053474.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053474.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html

reference_url	http://osvdb.org/70498
reference_id
reference_type
scores
url	http://osvdb.org/70498

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4267.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4267.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-4267

reference_id

reference_type

scores

value	0.10217
scoring_system	epss
scoring_elements	0.93167
published_at	2026-04-21T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.9311
published_at	2026-04-01T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.93119
published_at	2026-04-02T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.93123
published_at	2026-04-04T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.93122
published_at	2026-04-07T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.9313
published_at	2026-04-08T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.93135
published_at	2026-04-09T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.9314
published_at	2026-04-11T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.93137
published_at	2026-04-12T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.93139
published_at	2026-04-13T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.93155
published_at	2026-04-16T12:55:00Z

value	0.10217
scoring_system	epss
scoring_elements	0.9316
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-4267

reference_url	https://bugzilla.redhat.com/attachment.cgi?id=468455&action=diff
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/attachment.cgi?id=468455&action=diff

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4267
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4267

reference_url	http://secunia.com/advisories/42939
reference_id
reference_type
scores
url	http://secunia.com/advisories/42939

reference_url	http://secunia.com/advisories/42956
reference_id
reference_type
scores
url	http://secunia.com/advisories/42956

reference_url	http://secunia.com/advisories/43022
reference_id
reference_type
scores
url	http://secunia.com/advisories/43022

reference_url	http://secunia.com/advisories/43068
reference_id
reference_type
scores
url	http://secunia.com/advisories/43068

reference_url	http://secunia.com/advisories/43083
reference_id
reference_type
scores
url	http://secunia.com/advisories/43083

reference_url	http://secunia.com/advisories/43102
reference_id
reference_type
scores
url	http://secunia.com/advisories/43102

reference_url	http://secunia.com/advisories/48441
reference_id
reference_type
scores
url	http://secunia.com/advisories/48441

reference_url	http://security.gentoo.org/glsa/glsa-201203-17.xml
reference_id
reference_type
scores
url	http://security.gentoo.org/glsa/glsa-201203-17.xml

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/64738
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/64738

reference_url	http://www.debian.org/security/2011/dsa-2152
reference_id
reference_type
scores
url	http://www.debian.org/security/2011/dsa-2152

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:013
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:013

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0154.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0154.html

reference_url	http://www.securityfocus.com/bid/45833
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/45833

reference_url	http://www.securitytracker.com/id?1024967
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1024967

reference_url	http://www.ubuntu.com/usn/USN-1051-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-1051-1

reference_url	http://www.vupen.com/english/advisories/2011/0136
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0136

reference_url	http://www.vupen.com/english/advisories/2011/0160
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0160

reference_url	http://www.vupen.com/english/advisories/2011/0211
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0211

reference_url	http://www.vupen.com/english/advisories/2011/0212
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0212

reference_url	http://www.vupen.com/english/advisories/2011/0228
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0228

reference_url	http://www.vupen.com/english/advisories/2011/0243
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0243

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610960
reference_id	610960
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610960

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=662740
reference_id	662740
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=662740

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:linux_imaging_and_printing_project:1.6.7:::::::*
reference_id	cpe:2.3:a:hp:linux_imaging_and_printing_project:1.6.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:linux_imaging_and_printing_project:1.6.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:linux_imaging_and_printing_project:3.10.9:::::::*
reference_id	cpe:2.3:a:hp:linux_imaging_and_printing_project:3.10.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:linux_imaging_and_printing_project:3.10.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:linux_imaging_and_printing_project:3.9.8:::::::*
reference_id	cpe:2.3:a:hp:linux_imaging_and_printing_project:3.9.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hp:linux_imaging_and_printing_project:3.9.8:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2010-4267

reference_id

CVE-2010-4267

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2010-4267

reference_url	https://security.gentoo.org/glsa/201203-17
reference_id	GLSA-201203-17
reference_type
scores
url	https://security.gentoo.org/glsa/201203-17

reference_url	https://access.redhat.com/errata/RHSA-2011:0154
reference_id	RHSA-2011:0154
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0154

reference_url	https://usn.ubuntu.com/1051-1/
reference_id	USN-1051-1
reference_type
scores
url	https://usn.ubuntu.com/1051-1/

Weaknesses

cwe_id	119
name	Improper Restriction of Operations within the Bounds of a Memory Buffer
description	The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Exploits

Severity_range_score 7.5 - 7.5

Exploitability 0.5

Weighted_severity 6.8

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mfqk-y4g4-sfa5

Vulnerability Instance