Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-9kc4-rdty-87hk
Summary
Drew Yao of Apple Product Security reported a
vulnerability in Mozilla graphics code which handles GIF rendering in Mac
OS X. He demonstrated that a GIF file could be specially crafted to cause
the browser to free an uninitialized pointer. An attacker could use this
vulnerability to crash the browser and potentially execute arbitrary code
on the victim's computer.Firefox 2 is not affected by this issue.
Aliases
0
alias CVE-2008-2934
Fixed_packages
0
url pkg:mozilla/Firefox@3.0.1
purl pkg:mozilla/Firefox@3.0.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.0.1
Affected_packages
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2934.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2934.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2008-2934
reference_id
reference_type
scores
0
value 0.05575
scoring_system epss
scoring_elements 0.90318
published_at 2026-04-29T12:55:00Z
1
value 0.05575
scoring_system epss
scoring_elements 0.9025
published_at 2026-04-01T12:55:00Z
2
value 0.05575
scoring_system epss
scoring_elements 0.90308
published_at 2026-04-21T12:55:00Z
3
value 0.05575
scoring_system epss
scoring_elements 0.90322
published_at 2026-04-24T12:55:00Z
4
value 0.05575
scoring_system epss
scoring_elements 0.90321
published_at 2026-04-26T12:55:00Z
5
value 0.05575
scoring_system epss
scoring_elements 0.90253
published_at 2026-04-02T12:55:00Z
6
value 0.05575
scoring_system epss
scoring_elements 0.90266
published_at 2026-04-04T12:55:00Z
7
value 0.05575
scoring_system epss
scoring_elements 0.90271
published_at 2026-04-07T12:55:00Z
8
value 0.05575
scoring_system epss
scoring_elements 0.90285
published_at 2026-04-08T12:55:00Z
9
value 0.05575
scoring_system epss
scoring_elements 0.90292
published_at 2026-04-09T12:55:00Z
10
value 0.05575
scoring_system epss
scoring_elements 0.90301
published_at 2026-04-11T12:55:00Z
11
value 0.05575
scoring_system epss
scoring_elements 0.903
published_at 2026-04-12T12:55:00Z
12
value 0.05575
scoring_system epss
scoring_elements 0.90294
published_at 2026-04-13T12:55:00Z
13
value 0.05575
scoring_system epss
scoring_elements 0.90311
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2008-2934
2
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=441360
reference_id
reference_type
scores
url https://bugzilla.mozilla.org/show_bug.cgi?id=441360
3
reference_url http://secunia.com/advisories/31132
reference_id
reference_type
scores
url http://secunia.com/advisories/31132
4
reference_url http://secunia.com/advisories/31270
reference_id
reference_type
scores
url http://secunia.com/advisories/31270
5
reference_url http://secunia.com/advisories/34501
reference_id
reference_type
scores
url http://secunia.com/advisories/34501
6
reference_url http://securitytracker.com/id?1020516
reference_id
reference_type
scores
url http://securitytracker.com/id?1020516
7
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/43850
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/43850
8
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1
reference_id
reference_type
scores
url http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1
9
reference_url http://www.mozilla.org/security/announce/2008/mfsa2008-36.html
reference_id
reference_type
scores
url http://www.mozilla.org/security/announce/2008/mfsa2008-36.html
10
reference_url http://www.securityfocus.com/bid/30266
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/30266
11
reference_url http://www.ubuntu.com/usn/usn-626-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/usn-626-1
12
reference_url http://www.vupen.com/english/advisories/2008/2125
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2008/2125
13
reference_url http://www.vupen.com/english/advisories/2009/0977
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2009/0977
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
reference_id cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2934
reference_id CVE-2008-2934
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2934
18
reference_url https://nvd.nist.gov/vuln/detail/CVE-2008-2934
reference_id CVE-2008-2934
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2008-2934
19
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2008-36
reference_id mfsa2008-36
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2008-36
20
reference_url https://usn.ubuntu.com/626-1/
reference_id USN-626-1
reference_type
scores
url https://usn.ubuntu.com/626-1/
Weaknesses
0
cwe_id 908
name Use of Uninitialized Resource
description The product uses or accesses a resource that has not been initialized.
Exploits
Severity_range_score6.8 - 10.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-9kc4-rdty-87hk