Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-vket-6cdn-e7bx

Summary

Multiple vulnerabilities have been found in MySQL, the worst of
    which could result in the arbitrary execution of code.

Aliases

alias	CVE-2020-2924

Fixed_packages

url	pkg:ebuild/dev-db/mysql@5.7.34
purl	pkg:ebuild/dev-db/mysql@5.7.34
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34

url	pkg:ebuild/dev-db/mysql@8.0.24
purl	pkg:ebuild/dev-db/mysql@8.0.24
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24

url	pkg:ebuild/dev-db/mysql-connector-c@5.7.34
purl	pkg:ebuild/dev-db/mysql-connector-c@5.7.34
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql-connector-c@5.7.34

url	pkg:ebuild/dev-db/mysql-connector-c@8.0.24
purl	pkg:ebuild/dev-db/mysql-connector-c@8.0.24
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql-connector-c@8.0.24

Affected_packages

url pkg:rpm/redhat/rh-mysql80-mysql@8.0.21-1?arch=el7

purl pkg:rpm/redhat/rh-mysql80-mysql@8.0.21-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12pp-8xvj-4qc5

vulnerability	VCID-16hf-q2fp-3yg4

vulnerability	VCID-28fq-18k1-5ycd

vulnerability	VCID-2eev-6ekm-2ydm

vulnerability	VCID-2gak-ww8q-c7b7

vulnerability	VCID-2nqd-u269-8khk

vulnerability	VCID-2wdv-fu9e-fkg9

vulnerability	VCID-2xaj-kpub-pfdt

vulnerability	VCID-3c45-ytz8-cudx

vulnerability	VCID-3f87-xwd6-uqf6

vulnerability	VCID-3h99-b8mf-rkcr

vulnerability	VCID-3nu8-d5r3-6khh

vulnerability	VCID-3pme-m9qz-gfd1

vulnerability	VCID-454s-k7hc-r7au

vulnerability	VCID-45br-6r25-8ufz

vulnerability	VCID-4rzj-rkuh-ffg8

vulnerability	VCID-5527-9ttk-4kgv

vulnerability	VCID-5cah-ww3a-7kfv

vulnerability	VCID-6dhz-zsur-mbdv

vulnerability	VCID-6du1-tzth-k3ht

vulnerability	VCID-6gcu-yxck-x3ey

vulnerability	VCID-6msr-sgew-fuf8

vulnerability	VCID-6ym4-jmxp-qbbg

vulnerability	VCID-7gfu-mf9q-g3gx

vulnerability	VCID-7j69-1cb5-f3gf

vulnerability	VCID-7ruf-mz2x-6uaz

vulnerability	VCID-7zra-1j2r-sqhx

vulnerability	VCID-8dqm-4m5w-zbft

vulnerability	VCID-8fx7-rydt-nydd

vulnerability	VCID-8hkm-7z6b-p7a3

vulnerability	VCID-8sng-6dfg-yfa9

vulnerability	VCID-8u32-x538-h3d7

vulnerability	VCID-8u69-g2m8-e3eh

vulnerability	VCID-9e62-4r97-a7b6

vulnerability	VCID-9pzq-dxgg-e7gv

vulnerability	VCID-9x14-mncn-f3b4

vulnerability	VCID-b4kn-wdpj-a3dm

vulnerability	VCID-b67d-16a1-b3at

vulnerability	VCID-c1gb-f47t-2fha

vulnerability	VCID-c4u7-rnj3-xuba

vulnerability	VCID-ca5m-4jf6-yyds

vulnerability	VCID-cd89-a3te-cyfv

vulnerability	VCID-cqpn-sgg6-4khh

vulnerability	VCID-ctnu-1hhh-d3fg

vulnerability	VCID-dgx8-xnbw-4bdy

vulnerability	VCID-dxqe-tpjh-xqb3

vulnerability	VCID-e1p7-4g2g-wuac

vulnerability	VCID-f5vu-5jjt-1qf7

vulnerability	VCID-fv24-tu6p-17fj

vulnerability	VCID-fyxd-xzv7-jkgv

vulnerability	VCID-gd99-z617-n3h8

vulnerability	VCID-getz-u39m-ubgv

vulnerability	VCID-gf34-43aa-d3gj

vulnerability	VCID-gkdp-dtuv-nuf8

vulnerability	VCID-gkm2-f4yw-7bh6

vulnerability	VCID-gpzc-fz3m-8fgq

vulnerability	VCID-gqsy-vngu-8fa5

vulnerability	VCID-gt3h-mfuf-53ew

vulnerability	VCID-hjkk-adkv-yfdu

vulnerability	VCID-hwm3-w4vk-q3c7

vulnerability	VCID-j217-bf24-5fh3

vulnerability	VCID-jrj5-82ey-3fhy

vulnerability	VCID-jt7v-kaph-xkfm

vulnerability	VCID-ju46-v5qt-k7g8

vulnerability	VCID-k5ud-qnrb-5ufj

vulnerability	VCID-kjbh-uhvg-b7am

vulnerability	VCID-m2x9-xa7p-vbhp

vulnerability	VCID-mg5t-q2uj-4ud1

vulnerability	VCID-ngf5-739w-tbe4

vulnerability	VCID-nrzc-hfjh-wban

vulnerability	VCID-qg23-z7ps-73fc

vulnerability	VCID-qx9m-18q8-n3cb

vulnerability	VCID-r8yq-ybgw-wkd4

vulnerability	VCID-re6h-anrv-cfg1

vulnerability	VCID-rfdc-qbz3-33as

vulnerability	VCID-rgwn-3dvd-9yd6

vulnerability	VCID-ru7n-ys7q-7fc1

vulnerability	VCID-sbak-359j-afdc

vulnerability	VCID-sddw-fre1-53dt

vulnerability	VCID-sutj-xqjr-puee

vulnerability	VCID-tj7k-95b8-p7bn

vulnerability	VCID-tm1f-vhnj-jyek

vulnerability	VCID-tmkk-qvgc-43c2

vulnerability	VCID-tp8f-vv6a-j7fb

vulnerability	VCID-tyjq-f4yv-bqa9

vulnerability	VCID-u2pz-1zwj-zye3

vulnerability	VCID-u7pr-ex15-uyhv

vulnerability	VCID-upmt-kdja-37fj

vulnerability	VCID-uxqb-7nur-4fba

vulnerability	VCID-vcyx-58nm-gbba

vulnerability	VCID-vddh-dtqh-bqay

vulnerability	VCID-vket-6cdn-e7bx

vulnerability	VCID-vxuu-tf8e-bkcz

vulnerability	VCID-wfqc-j2nq-x7bw

vulnerability	VCID-wt8v-67w9-7ugx

vulnerability	VCID-wvw3-eeya-auee

vulnerability	VCID-wwy8-j3q8-8khu

vulnerability	VCID-wxvs-dchq-uudr

vulnerability	VCID-xhh7-myxk-xkah

vulnerability	VCID-xj3s-qduu-2qbh

100

vulnerability	VCID-xs9x-b9sp-p3ca

101

vulnerability	VCID-xtxe-6myn-ske5

102

vulnerability	VCID-xztv-b4hb-tkgv

103

vulnerability	VCID-xzx5-52qt-ffcj

104

vulnerability	VCID-yavu-9dss-j7hk

105

vulnerability	VCID-yt4u-3atp-vfb1

106

vulnerability	VCID-z56k-yk6c-hudp

107

vulnerability	VCID-za2p-vsg7-dudh

108

vulnerability	VCID-zjes-mkae-que3

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql80-mysql@8.0.21-1%3Farch=el7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2924.json

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2924.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-2924

reference_id

reference_type

scores

value	0.003
scoring_system	epss
scoring_elements	0.53285
published_at	2026-04-01T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53392
published_at	2026-04-21T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53308
published_at	2026-04-02T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53334
published_at	2026-04-04T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53303
published_at	2026-04-07T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53356
published_at	2026-04-08T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.5335
published_at	2026-04-09T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53402
published_at	2026-04-11T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53385
published_at	2026-04-12T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53369
published_at	2026-04-13T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53406
published_at	2026-04-16T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53412
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-2924

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/

reference_url

https://security.netapp.com/advisory/ntap-20200416-0003/

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/

url

https://security.netapp.com/advisory/ntap-20200416-0003/

reference_url

https://www.oracle.com/security-alerts/cpuapr2020.html

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/

url

https://www.oracle.com/security-alerts/cpuapr2020.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1830075
reference_id	1830075
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1830075

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager::::::vmware_vsphere::*
reference_id	cpe:2.3:a:netapp:active_iq_unified_manager::::::vmware_vsphere::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager::::::vmware_vsphere::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager::::::windows::*
reference_id	cpe:2.3:a:netapp:active_iq_unified_manager::::::windows::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:active_iq_unified_manager::::::windows::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_insight:-:::::::*
reference_id	cpe:2.3:a:netapp:oncommand_insight:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_insight:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*
reference_id	cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapcenter:-:::::::*
reference_id	cpe:2.3:a:netapp:snapcenter:-:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:snapcenter:-:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql::::::::
reference_id	cpe:2.3:a:oracle:mysql::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:20.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:20.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:20.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:30:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:31:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:::::::*
reference_id	cpe:2.3:o:fedoraproject:fedora:32:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2020-2924

reference_id

CVE-2020-2924

reference_type

scores

value	4.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:N/I:N/A:P

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

value	4.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2020-2924

reference_url

https://security.gentoo.org/glsa/202105-27

reference_id

GLSA-202105-27

reference_type

scores

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/

url

https://security.gentoo.org/glsa/202105-27

reference_url	https://access.redhat.com/errata/RHSA-2020:3518
reference_id	RHSA-2020:3518
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3518

reference_url	https://access.redhat.com/errata/RHSA-2020:3732
reference_id	RHSA-2020:3732
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3732

reference_url	https://access.redhat.com/errata/RHSA-2020:3755
reference_id	RHSA-2020:3755
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3755

reference_url	https://access.redhat.com/errata/RHSA-2020:3757
reference_id	RHSA-2020:3757
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3757

reference_url

https://usn.ubuntu.com/4350-1/

reference_id

USN-4350-1

reference_type

scores

value	4.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/

url

https://usn.ubuntu.com/4350-1/

Weaknesses

Exploits

Severity_range_score 4.0 - 4.9

Exploitability 0.5

Weighted_severity 4.4

Risk_score 2.2

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vket-6cdn-e7bx

Vulnerability Instance