Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-g677-513z-fygc
Summary
Multiple vulnerabilities have been found in PHP, the worst of which
    could result in a Denial of Service condition.
Aliases
0
alias CVE-2018-10545
Fixed_packages
0
url pkg:apk/alpine/php7@7.1.17-r0?arch=x86_64&distroversion=v3.7&reponame=community
purl pkg:apk/alpine/php7@7.1.17-r0?arch=x86_64&distroversion=v3.7&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.1.17-r0%3Farch=x86_64&distroversion=v3.7&reponame=community
1
url pkg:apk/alpine/php7@7.1.17-r0?arch=ppc64le&distroversion=v3.7&reponame=community
purl pkg:apk/alpine/php7@7.1.17-r0?arch=ppc64le&distroversion=v3.7&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.1.17-r0%3Farch=ppc64le&distroversion=v3.7&reponame=community
2
url pkg:apk/alpine/php7@7.1.17-r0?arch=x86&distroversion=v3.7&reponame=community
purl pkg:apk/alpine/php7@7.1.17-r0?arch=x86&distroversion=v3.7&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.1.17-r0%3Farch=x86&distroversion=v3.7&reponame=community
3
url pkg:apk/alpine/php7@7.1.17-r0?arch=aarch64&distroversion=v3.7&reponame=community
purl pkg:apk/alpine/php7@7.1.17-r0?arch=aarch64&distroversion=v3.7&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.1.17-r0%3Farch=aarch64&distroversion=v3.7&reponame=community
4
url pkg:apk/alpine/php7@7.1.17-r0?arch=armhf&distroversion=v3.7&reponame=community
purl pkg:apk/alpine/php7@7.1.17-r0?arch=armhf&distroversion=v3.7&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.1.17-r0%3Farch=armhf&distroversion=v3.7&reponame=community
5
url pkg:apk/alpine/php7@7.1.17-r0?arch=s390x&distroversion=v3.7&reponame=community
purl pkg:apk/alpine/php7@7.1.17-r0?arch=s390x&distroversion=v3.7&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.1.17-r0%3Farch=s390x&distroversion=v3.7&reponame=community
6
url pkg:ebuild/dev-lang/php@5.6.38
purl pkg:ebuild/dev-lang/php@5.6.38
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@5.6.38
7
url pkg:ebuild/dev-lang/php@7.0.32
purl pkg:ebuild/dev-lang/php@7.0.32
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.0.32
8
url pkg:ebuild/dev-lang/php@7.1.22
purl pkg:ebuild/dev-lang/php@7.1.22
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.1.22
9
url pkg:ebuild/dev-lang/php@7.2.10
purl pkg:ebuild/dev-lang/php@7.2.10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.2.10
Affected_packages
0
url pkg:rpm/redhat/rh-php71-php@7.1.30-1?arch=el7
purl pkg:rpm/redhat/rh-php71-php@7.1.30-1?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1ap1-zugk-gbas
1
vulnerability VCID-2frx-71st-5qar
2
vulnerability VCID-2z59-w2uj-skgy
3
vulnerability VCID-3v99-kbeq-47d8
4
vulnerability VCID-4gxr-wh6g-bbbe
5
vulnerability VCID-6xda-97rd-9bam
6
vulnerability VCID-8dmb-887r-zqe8
7
vulnerability VCID-8kme-kjne-xubq
8
vulnerability VCID-af13-btr1-7qex
9
vulnerability VCID-aphr-wqxe-h3du
10
vulnerability VCID-b12z-p9yv-c7fb
11
vulnerability VCID-c73c-1vw2-nfdf
12
vulnerability VCID-ce8c-a78t-kkd9
13
vulnerability VCID-dhmd-y13e-t7hm
14
vulnerability VCID-g1b8-dkd3-j3a2
15
vulnerability VCID-g677-513z-fygc
16
vulnerability VCID-huuh-j4zk-p3bp
17
vulnerability VCID-j3tj-mxke-1kga
18
vulnerability VCID-jugh-v1yu-cbcv
19
vulnerability VCID-nnxq-za85-73dk
20
vulnerability VCID-nv53-k7pk-yqa7
21
vulnerability VCID-p2fc-mdv6-a3b5
22
vulnerability VCID-pn3v-35ge-fqa6
23
vulnerability VCID-ps5m-es4t-5fbm
24
vulnerability VCID-qwh1-37ux-73h8
25
vulnerability VCID-rjc8-9tfv-sfdk
26
vulnerability VCID-sszm-mvm2-m7ee
27
vulnerability VCID-utwt-7gge-j7c7
28
vulnerability VCID-vh94-jp2p-zygp
29
vulnerability VCID-vtnn-62dq-yuee
30
vulnerability VCID-xh65-k3uv-77af
31
vulnerability VCID-y1mr-3hx7-mfgc
32
vulnerability VCID-y52x-tykj-4qcx
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-php71-php@7.1.30-1%3Farch=el7
References
0
reference_url http://php.net/ChangeLog-5.php
reference_id
reference_type
scores
url http://php.net/ChangeLog-5.php
1
reference_url http://php.net/ChangeLog-7.php
reference_id
reference_type
scores
url http://php.net/ChangeLog-7.php
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10545.json
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10545.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-10545
reference_id
reference_type
scores
0
value 0.00045
scoring_system epss
scoring_elements 0.13844
published_at 2026-04-01T12:55:00Z
1
value 0.00045
scoring_system epss
scoring_elements 0.13698
published_at 2026-04-18T12:55:00Z
2
value 0.00045
scoring_system epss
scoring_elements 0.13842
published_at 2026-04-12T12:55:00Z
3
value 0.00045
scoring_system epss
scoring_elements 0.13794
published_at 2026-04-13T12:55:00Z
4
value 0.00045
scoring_system epss
scoring_elements 0.13703
published_at 2026-04-16T12:55:00Z
5
value 0.00045
scoring_system epss
scoring_elements 0.13927
published_at 2026-04-02T12:55:00Z
6
value 0.00045
scoring_system epss
scoring_elements 0.13983
published_at 2026-04-04T12:55:00Z
7
value 0.00045
scoring_system epss
scoring_elements 0.13786
published_at 2026-04-07T12:55:00Z
8
value 0.00045
scoring_system epss
scoring_elements 0.13869
published_at 2026-04-08T12:55:00Z
9
value 0.00045
scoring_system epss
scoring_elements 0.13921
published_at 2026-04-09T12:55:00Z
10
value 0.00045
scoring_system epss
scoring_elements 0.13878
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-10545
4
reference_url https://bugs.php.net/bug.php?id=75605
reference_id
reference_type
scores
url https://bugs.php.net/bug.php?id=75605
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10545
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10545
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10546
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10546
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10547
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10547
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10548
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10548
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10549
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10549
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7584
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7584
11
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
12
reference_url https://lists.debian.org/debian-lts-announce/2018/05/msg00004.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2018/05/msg00004.html
13
reference_url https://lists.debian.org/debian-lts-announce/2018/06/msg00005.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2018/06/msg00005.html
14
reference_url https://security.netapp.com/advisory/ntap-20180607-0003/
reference_id
reference_type
scores
url https://security.netapp.com/advisory/ntap-20180607-0003/
15
reference_url https://www.debian.org/security/2018/dsa-4240
reference_id
reference_type
scores
url https://www.debian.org/security/2018/dsa-4240
16
reference_url https://www.tenable.com/security/tns-2018-12
reference_id
reference_type
scores
url https://www.tenable.com/security/tns-2018-12
17
reference_url http://www.securityfocus.com/bid/104022
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/104022
18
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1563858
reference_id 1563858
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1563858
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*
reference_id cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
23
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
24
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-10545
reference_id CVE-2018-10545
reference_type
scores
0
value 1.9
scoring_system cvssv2
scoring_elements AV:L/AC:M/Au:N/C:P/I:N/A:N
1
value 4.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2018-10545
30
reference_url https://security.gentoo.org/glsa/201812-01
reference_id GLSA-201812-01
reference_type
scores
url https://security.gentoo.org/glsa/201812-01
31
reference_url https://access.redhat.com/errata/RHSA-2019:2519
reference_id RHSA-2019:2519
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2519
32
reference_url https://usn.ubuntu.com/3646-1/
reference_id USN-3646-1
reference_type
scores
url https://usn.ubuntu.com/3646-1/
33
reference_url https://usn.ubuntu.com/3646-2/
reference_id USN-3646-2
reference_type
scores
url https://usn.ubuntu.com/3646-2/
Weaknesses
0
cwe_id 287
name Improper Authentication
description When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
1
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Exploits
Severity_range_score1.9 - 6.5
Exploitability0.5
Weighted_severity4.2
Risk_score2.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-g677-513z-fygc