Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-3zzf-hf31-c3ed
Summary
Information Exposure
Centreon exposes Session IDs in server responses.
Aliases
0
alias CVE-2020-10945
1
alias GHSA-h5qv-p378-3hhr
Fixed_packages
0
url pkg:composer/centreon/centreon@2.8.32
purl pkg:composer/centreon/centreon@2.8.32
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@2.8.32
1
url pkg:composer/centreon/centreon@2.99.1
purl pkg:composer/centreon/centreon@2.99.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@2.99.1
2
url pkg:composer/centreon/centreon@18.10.11
purl pkg:composer/centreon/centreon@18.10.11
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@18.10.11
3
url pkg:composer/centreon/centreon@19.4.10
purl pkg:composer/centreon/centreon@19.4.10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@19.4.10
4
url pkg:composer/centreon/centreon@19.10.7
purl pkg:composer/centreon/centreon@19.10.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@19.10.7
Affected_packages
0
url pkg:composer/centreon/centreon@2.8.2
purl pkg:composer/centreon/centreon@2.8.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3zzf-hf31-c3ed
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@2.8.2
1
url pkg:composer/centreon/centreon@18.0.0
purl pkg:composer/centreon/centreon@18.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3r3w-7vvv-kye4
1
vulnerability VCID-3zzf-hf31-c3ed
2
vulnerability VCID-4bh1-cyu7-6uam
3
vulnerability VCID-aaem-ywm2-a7au
4
vulnerability VCID-b675-z44g-byfs
5
vulnerability VCID-bvm5-7nu4-2qer
6
vulnerability VCID-fa2z-2rzx-hyd1
7
vulnerability VCID-fq3k-tpny-f3b1
8
vulnerability VCID-j96e-5q47-ubas
9
vulnerability VCID-kukg-nxwy-xyhb
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@18.0.0
2
url pkg:composer/centreon/centreon@18.10.0
purl pkg:composer/centreon/centreon@18.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3zzf-hf31-c3ed
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@18.10.0
3
url pkg:composer/centreon/centreon@19.0.0
purl pkg:composer/centreon/centreon@19.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3r3w-7vvv-kye4
1
vulnerability VCID-3zzf-hf31-c3ed
2
vulnerability VCID-j7cg-229c-jbgs
3
vulnerability VCID-jgq5-dz44-97c4
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@19.0.0
4
url pkg:composer/centreon/centreon@19.4.0
purl pkg:composer/centreon/centreon@19.4.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3zzf-hf31-c3ed
1
vulnerability VCID-7bxn-mh7z-7ugv
2
vulnerability VCID-aaem-ywm2-a7au
3
vulnerability VCID-b28m-fydr-9qhc
4
vulnerability VCID-bvm5-7nu4-2qer
5
vulnerability VCID-fa2z-2rzx-hyd1
6
vulnerability VCID-gjwc-f5d3-97ad
7
vulnerability VCID-j96e-5q47-ubas
8
vulnerability VCID-jgq5-dz44-97c4
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@19.4.0
5
url pkg:composer/centreon/centreon@19.10.0
purl pkg:composer/centreon/centreon@19.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3zc5-px1t-83cp
1
vulnerability VCID-3zzf-hf31-c3ed
2
vulnerability VCID-aaem-ywm2-a7au
3
vulnerability VCID-bvm5-7nu4-2qer
4
vulnerability VCID-c444-ryqk-vqhx
5
vulnerability VCID-f5gf-m4v6-jubw
6
vulnerability VCID-fa2z-2rzx-hyd1
7
vulnerability VCID-j96e-5q47-ubas
8
vulnerability VCID-mg9p-pc2s-7ye1
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/centreon/centreon@19.10.0
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-10945
reference_id
reference_type
scores
0
value 0.00042
scoring_system epss
scoring_elements 0.13117
published_at 2026-06-07T12:55:00Z
1
value 0.00042
scoring_system epss
scoring_elements 0.13022
published_at 2026-06-08T12:55:00Z
2
value 0.00042
scoring_system epss
scoring_elements 0.13154
published_at 2026-06-05T12:55:00Z
3
value 0.00042
scoring_system epss
scoring_elements 0.13075
published_at 2026-06-04T12:55:00Z
4
value 0.00042
scoring_system epss
scoring_elements 0.13158
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-10945
1
reference_url https://github.com/centreon/centreon
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/centreon/centreon
2
reference_url https://github.com/centreon/centreon-archived/commit/02a3248602ce194fbb098af34be4652565db2468
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/centreon/centreon-archived/commit/02a3248602ce194fbb098af34be4652565db2468
3
reference_url https://github.com/centreon/centreon-archived/commit/1c14a8ee07225836bdd2ca480e47a63070a11bb9
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/centreon/centreon-archived/commit/1c14a8ee07225836bdd2ca480e47a63070a11bb9
4
reference_url https://github.com/centreon/centreon-archived/commit/afa0ee6d43d22860ae435163559912696569fc2f
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/centreon/centreon-archived/commit/afa0ee6d43d22860ae435163559912696569fc2f
5
reference_url https://github.com/centreon/centreon-archived/commit/fbee38536960eecaf52eda2bf31b90859c018b66
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/centreon/centreon-archived/commit/fbee38536960eecaf52eda2bf31b90859c018b66
6
reference_url https://github.com/centreon/centreon-archived/pull/8291
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/centreon/centreon-archived/pull/8291
7
reference_url https://web.archive.org/web/20200625084841/https://sysdream.com/news/lab/2020-05-13-cve-2020-10945-centreon-session-id-exposure
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200625084841/https://sysdream.com/news/lab/2020-05-13-cve-2020-10945-centreon-session-id-exposure
8
reference_url https://web.archive.org/web/20200625084841/https://sysdream.com/news/lab/2020-05-13-cve-2020-10945-centreon-session-id-exposure/
reference_id
reference_type
scores
url https://web.archive.org/web/20200625084841/https://sysdream.com/news/lab/2020-05-13-cve-2020-10945-centreon-session-id-exposure/
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-10945
reference_id CVE-2020-10945
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-10945
10
reference_url https://github.com/advisories/GHSA-h5qv-p378-3hhr
reference_id GHSA-h5qv-p378-3hhr
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-h5qv-p378-3hhr
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-3zzf-hf31-c3ed