Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-xgtm-9d66-rugc
SummaryMicrosoft Security Advisory CVE-2018-8269: Denial of Service Vulnerability in OData
Aliases
0
alias CVE-2018-8269
1
alias GHSA-mv2r-q4g5-j8q5
Fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.13
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.13
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.13
1
url pkg:nuget/Microsoft.AspNetCore.All@2.2.7
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.7
2
url pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.1.2
purl pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.1.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.1.2
3
url pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.2.1
purl pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.2.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.2.1
4
url pkg:nuget/Microsoft.Data.OData@5.8.4
purl pkg:nuget/Microsoft.Data.OData@5.8.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.8.4
Affected_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.0
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3nh7-wm35-3kb2
1
vulnerability VCID-c94t-hevg-xych
2
vulnerability VCID-d4mn-hm9u-3qbk
3
vulnerability VCID-dq9y-u457-6uhc
4
vulnerability VCID-dw22-bazh-4qa9
5
vulnerability VCID-kv27-b4ve-d3ax
6
vulnerability VCID-v6vu-9ybt-tqbc
7
vulnerability VCID-vrkf-8nhe-7uc6
8
vulnerability VCID-w8qv-heb5-87fd
9
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.0
1
url pkg:nuget/Microsoft.AspNetCore.All@2.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3nh7-wm35-3kb2
1
vulnerability VCID-v6vu-9ybt-tqbc
2
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.1
2
url pkg:nuget/Microsoft.AspNetCore.All@2.1.2
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3nh7-wm35-3kb2
1
vulnerability VCID-v6vu-9ybt-tqbc
2
vulnerability VCID-w8qv-heb5-87fd
3
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.2
3
url pkg:nuget/Microsoft.AspNetCore.All@2.1.3
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3nh7-wm35-3kb2
1
vulnerability VCID-v6vu-9ybt-tqbc
2
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.3
4
url pkg:nuget/Microsoft.AspNetCore.All@2.1.4
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-v6vu-9ybt-tqbc
1
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.4
5
url pkg:nuget/Microsoft.AspNetCore.All@2.1.5
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-v6vu-9ybt-tqbc
1
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.5
6
url pkg:nuget/Microsoft.AspNetCore.All@2.1.6
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-v6vu-9ybt-tqbc
1
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.6
7
url pkg:nuget/Microsoft.AspNetCore.All@2.1.7
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.7
8
url pkg:nuget/Microsoft.AspNetCore.All@2.1.8
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.8
9
url pkg:nuget/Microsoft.AspNetCore.All@2.1.9
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.9
10
url pkg:nuget/Microsoft.AspNetCore.All@2.1.10
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.10
11
url pkg:nuget/Microsoft.AspNetCore.All@2.1.11
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.11
12
url pkg:nuget/Microsoft.AspNetCore.All@2.1.12
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.12
13
url pkg:nuget/Microsoft.AspNetCore.All@2.2.0
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-c94t-hevg-xych
1
vulnerability VCID-v6vu-9ybt-tqbc
2
vulnerability VCID-vrkf-8nhe-7uc6
3
vulnerability VCID-xgtm-9d66-rugc
4
vulnerability VCID-xnp7-eqhh-tkhd
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.0
14
url pkg:nuget/Microsoft.AspNetCore.All@2.2.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.1
15
url pkg:nuget/Microsoft.AspNetCore.All@2.2.2
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.2
16
url pkg:nuget/Microsoft.AspNetCore.All@2.2.3
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.3
17
url pkg:nuget/Microsoft.AspNetCore.All@2.2.4
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.4
18
url pkg:nuget/Microsoft.AspNetCore.All@2.2.5
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.5
19
url pkg:nuget/Microsoft.AspNetCore.All@2.2.6
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.6
20
url pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.1.0
purl pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.1.0
21
url pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.1.1
purl pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.1.1
22
url pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.2.0
purl pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.DataProtection.AzureStorage@2.2.0
23
url pkg:nuget/Microsoft.Data.OData@5.0.1
purl pkg:nuget/Microsoft.Data.OData@5.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.0.1
24
url pkg:nuget/Microsoft.Data.OData@5.0.2
purl pkg:nuget/Microsoft.Data.OData@5.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.0.2
25
url pkg:nuget/Microsoft.Data.OData@5.1.0
purl pkg:nuget/Microsoft.Data.OData@5.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.1.0
26
url pkg:nuget/Microsoft.Data.OData@5.2.0
purl pkg:nuget/Microsoft.Data.OData@5.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.2.0
27
url pkg:nuget/Microsoft.Data.OData@5.3.0
purl pkg:nuget/Microsoft.Data.OData@5.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.3.0
28
url pkg:nuget/Microsoft.Data.OData@5.4.0
purl pkg:nuget/Microsoft.Data.OData@5.4.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.4.0
29
url pkg:nuget/Microsoft.Data.OData@5.5.0
purl pkg:nuget/Microsoft.Data.OData@5.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.5.0
30
url pkg:nuget/Microsoft.Data.OData@5.6.0
purl pkg:nuget/Microsoft.Data.OData@5.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.6.0
31
url pkg:nuget/Microsoft.Data.OData@5.6.1
purl pkg:nuget/Microsoft.Data.OData@5.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.6.1
32
url pkg:nuget/Microsoft.Data.OData@5.6.2
purl pkg:nuget/Microsoft.Data.OData@5.6.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.6.2
33
url pkg:nuget/Microsoft.Data.OData@5.6.3
purl pkg:nuget/Microsoft.Data.OData@5.6.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.6.3
34
url pkg:nuget/Microsoft.Data.OData@5.6.4
purl pkg:nuget/Microsoft.Data.OData@5.6.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.6.4
35
url pkg:nuget/Microsoft.Data.OData@5.7.0
purl pkg:nuget/Microsoft.Data.OData@5.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xgtm-9d66-rugc
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.Data.OData@5.7.0
References
0
reference_url https://github.com/aspnet/Announcements/issues/385
reference_id
reference_type
scores
url https://github.com/aspnet/Announcements/issues/385
1
reference_url https://github.com/dotnet/aspnetcore/issues/13860
reference_id
reference_type
scores
url https://github.com/dotnet/aspnetcore/issues/13860
2
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
url https://github.com/github/advisory-database/issues/302
3
reference_url https://www.exploit-db.com/exploits/46101/
reference_id
reference_type
scores
url https://www.exploit-db.com/exploits/46101/
4
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/46101.rb
reference_id CVE-2018-8269
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/46101.rb
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-8269
reference_id CVE-2018-8269
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2018-8269
6
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8269
reference_id CVE-2018-8269
reference_type
scores
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8269
7
reference_url https://github.com/advisories/GHSA-mv2r-q4g5-j8q5
reference_id GHSA-mv2r-q4g5-j8q5
reference_type
scores
url https://github.com/advisories/GHSA-mv2r-q4g5-j8q5
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
0
date_added 2019-01-09
description Microsoft Office SharePoint Server 2016 - Denial of Service (Metasploit)
required_action null
due_date null
notes null
known_ransomware_campaign_use false
source_date_published 2019-01-09
exploit_type dos
platform windows
source_date_updated 2019-01-09
data_source Exploit-DB
source_url
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-xgtm-9d66-rugc