Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-zruv-x4yk-dqch

Summary bind: Amplification vulnerabilities via self-pointed glue records

Aliases

alias	CVE-2026-3592

Fixed_packages

url	pkg:apk/alpine/bind@9.20.23-r0?arch=aarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=aarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=aarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=armhf&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=armhf&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=armv7&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=armv7&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=armv7&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=loongarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=loongarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=loongarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=ppc64le&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=ppc64le&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=ppc64le&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=riscv64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=riscv64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=riscv64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=s390x&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=s390x&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=s390x&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=x86&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=x86&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=x86&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=x86_64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=x86_64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=x86_64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=aarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=aarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=aarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=armhf&distroversion=edge&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=armhf&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=armhf&distroversion=edge&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=armv7&distroversion=edge&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=armv7&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=armv7&distroversion=edge&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=loongarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=loongarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=loongarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=ppc64le&distroversion=edge&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=ppc64le&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=ppc64le&distroversion=edge&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=riscv64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=riscv64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=riscv64&distroversion=edge&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=s390x&distroversion=edge&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=s390x&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=s390x&distroversion=edge&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=x86&distroversion=edge&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=x86&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=x86&distroversion=edge&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=x86_64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=x86_64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=x86_64&distroversion=edge&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=aarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=aarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=aarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=armhf&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=armhf&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=armhf&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=armv7&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=armv7&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=armv7&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=loongarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=loongarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=loongarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=ppc64le&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=ppc64le&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=riscv64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=riscv64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=s390x&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=s390x&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=s390x&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=x86&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=x86&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=x86&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/bind@9.20.23-r0?arch=x86_64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/bind@9.20.23-r0?arch=x86_64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/bind@9.20.23-r0%3Farch=x86_64&distroversion=v3.23&reponame=main

url pkg:deb/debian/bind9@1:9.18.47-1~deb12u1?distro=trixie

purl pkg:deb/debian/bind9@1:9.18.47-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qu9b-7ejp-jyaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.18.47-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/bind9@1:9.18.47-1~deb12u1

purl pkg:deb/debian/bind9@1:9.18.47-1~deb12u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qu9b-7ejp-jyaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.18.47-1~deb12u1

url	pkg:deb/debian/bind9@1:9.18.49-1~deb12u1?distro=trixie
purl	pkg:deb/debian/bind9@1:9.18.49-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.18.49-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/bind9@1:9.20.21-1~deb13u1?distro=trixie
purl	pkg:deb/debian/bind9@1:9.20.21-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.20.21-1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/bind9@1:9.20.23-1~deb13u1?distro=trixie
purl	pkg:deb/debian/bind9@1:9.20.23-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.20.23-1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/bind9@1:9.20.23-1?distro=trixie
purl	pkg:deb/debian/bind9@1:9.20.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.20.23-1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/bind9@1:9.16.50-1~deb11u2

purl pkg:deb/debian/bind9@1:9.16.50-1~deb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-acdz-uq4x-mucc

vulnerability	VCID-ekn5-nayb-uufj

vulnerability	VCID-qu9b-7ejp-jyaa

vulnerability	VCID-ykwn-e6sw-eueh

vulnerability	VCID-zfyv-k8nv-zubd

vulnerability	VCID-zruv-x4yk-dqch

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.16.50-1~deb11u2

url pkg:deb/debian/bind9@1:9.16.50-1~deb11u2?distro=trixie

purl pkg:deb/debian/bind9@1:9.16.50-1~deb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-acdz-uq4x-mucc

vulnerability	VCID-ekn5-nayb-uufj

vulnerability	VCID-qu9b-7ejp-jyaa

vulnerability	VCID-ykwn-e6sw-eueh

vulnerability	VCID-zfyv-k8nv-zubd

vulnerability	VCID-zruv-x4yk-dqch

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bind9@1:9.16.50-1~deb11u2%3Fdistro=trixie

url pkg:rpm/redhat/bind-main@9.18.49-1?arch=hum1

purl pkg:rpm/redhat/bind-main@9.18.49-1?arch=hum1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-acdz-uq4x-mucc

vulnerability	VCID-ykwn-e6sw-eueh

vulnerability	VCID-zfyv-k8nv-zubd

vulnerability	VCID-zruv-x4yk-dqch

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bind-main@9.18.49-1%3Farch=hum1

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3592.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3592.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-3592

reference_id

reference_type

scores

value	0.00024
scoring_system	epss
scoring_elements	0.0721
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-3592

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3592
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3592

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2479768
reference_id	2479768
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2479768

reference_url

https://downloads.isc.org/isc/bind9/9.18.49

reference_id

9.18.49

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-20T13:42:13Z/

url

https://downloads.isc.org/isc/bind9/9.18.49

reference_url

https://downloads.isc.org/isc/bind9/9.20.23

reference_id

9.20.23

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-20T13:42:13Z/

url

https://downloads.isc.org/isc/bind9/9.20.23

reference_url

https://downloads.isc.org/isc/bind9/9.21.22

reference_id

9.21.22

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-20T13:42:13Z/

url

https://downloads.isc.org/isc/bind9/9.21.22

reference_url

https://kb.isc.org/docs/cve-2026-3592

reference_id

cve-2026-3592

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-20T13:42:13Z/

url

https://kb.isc.org/docs/cve-2026-3592

reference_url	https://access.redhat.com/errata/RHSA-2026:20334
reference_id	RHSA-2026:20334
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:20334

reference_url	https://usn.ubuntu.com/8293-1/
reference_id	USN-8293-1
reference_type
scores
url	https://usn.ubuntu.com/8293-1/

Weaknesses

cwe_id	770
name	Allocation of Resources Without Limits or Throttling
description	The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

cwe_id	408
name	Incorrect Behavior Order: Early Amplification
description	The product allows an entity to perform a legitimate but expensive operation before authentication or authorization has taken place.

Exploits

Severity_range_score 5.3 - 5.3

Exploitability 0.5

Weighted_severity 4.8

Risk_score 2.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zruv-x4yk-dqch

Vulnerability Instance