Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-nwfb-xnks-1kg7
Summaryglibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
Aliases
0
alias CVE-2026-4438
Fixed_packages
0
url pkg:deb/debian/glibc@2.36-8
purl pkg:deb/debian/glibc@2.36-8
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-8
1
url pkg:deb/debian/glibc@2.40-5
purl pkg:deb/debian/glibc@2.40-5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.40-5
2
url pkg:deb/debian/glibc@2.42-10
purl pkg:deb/debian/glibc@2.42-10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-10
3
url pkg:deb/debian/glibc@2.42-14
purl pkg:deb/debian/glibc@2.42-14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-us68-psx5-zude
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-14
4
url pkg:deb/debian/glibc@2.42-14?distro=trixie
purl pkg:deb/debian/glibc@2.42-14?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-us68-psx5-zude
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-14%3Fdistro=trixie
5
url pkg:deb/debian/glibc@2.42-15?distro=trixie
purl pkg:deb/debian/glibc@2.42-15?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-15%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie
purl pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-9nqp-tfvr-ayen
2
vulnerability VCID-jswq-6ru6-wybc
3
vulnerability VCID-kukb-s61t-pbc3
4
vulnerability VCID-nwfb-xnks-1kg7
5
vulnerability VCID-ssnc-wdcf-sfc9
6
vulnerability VCID-tcpv-4crc-zuap
7
vulnerability VCID-us68-psx5-zude
8
vulnerability VCID-zn6t-3mvb-wufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.31-13%252Bdeb11u11%3Fdistro=trixie
1
url pkg:deb/debian/glibc@2.31-13%2Bdeb11u11
purl pkg:deb/debian/glibc@2.31-13%2Bdeb11u11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-9nqp-tfvr-ayen
2
vulnerability VCID-d5xx-af6p-2fhn
3
vulnerability VCID-jswq-6ru6-wybc
4
vulnerability VCID-kukb-s61t-pbc3
5
vulnerability VCID-nwfb-xnks-1kg7
6
vulnerability VCID-ssnc-wdcf-sfc9
7
vulnerability VCID-tcpv-4crc-zuap
8
vulnerability VCID-us68-psx5-zude
9
vulnerability VCID-ys5d-7xgp-w7g5
10
vulnerability VCID-zn6t-3mvb-wufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.31-13%252Bdeb11u11
2
url pkg:deb/debian/glibc@2.36-9%2Bdeb12u13
purl pkg:deb/debian/glibc@2.36-9%2Bdeb12u13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-nwfb-xnks-1kg7
2
vulnerability VCID-ssnc-wdcf-sfc9
3
vulnerability VCID-tcpv-4crc-zuap
4
vulnerability VCID-us68-psx5-zude
5
vulnerability VCID-zn6t-3mvb-wufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-9%252Bdeb12u13
3
url pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie
purl pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-nwfb-xnks-1kg7
2
vulnerability VCID-ssnc-wdcf-sfc9
3
vulnerability VCID-tcpv-4crc-zuap
4
vulnerability VCID-us68-psx5-zude
5
vulnerability VCID-zn6t-3mvb-wufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-9%252Bdeb12u13%3Fdistro=trixie
4
url pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-nwfb-xnks-1kg7
2
vulnerability VCID-us68-psx5-zude
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.41-12%252Bdeb13u2%3Fdistro=trixie
5
url pkg:deb/debian/glibc@2.41-12%2Bdeb13u2
purl pkg:deb/debian/glibc@2.41-12%2Bdeb13u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-nwfb-xnks-1kg7
2
vulnerability VCID-us68-psx5-zude
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.41-12%252Bdeb13u2
6
url pkg:deb/debian/glibc@2.42-13?distro=trixie
purl pkg:deb/debian/glibc@2.42-13?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-nwfb-xnks-1kg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-13%3Fdistro=trixie
7
url pkg:deb/debian/glibc@2.42-13
purl pkg:deb/debian/glibc@2.42-13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e43-r92j-hkd3
1
vulnerability VCID-nwfb-xnks-1kg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-13
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4438.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4438.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-4438
reference_id
reference_type
scores
0
value 0.00026
scoring_system epss
scoring_elements 0.07331
published_at 2026-04-08T12:55:00Z
1
value 0.00026
scoring_system epss
scoring_elements 0.07359
published_at 2026-04-09T12:55:00Z
2
value 0.0003
scoring_system epss
scoring_elements 0.08485
published_at 2026-04-07T12:55:00Z
3
value 0.0003
scoring_system epss
scoring_elements 0.08511
published_at 2026-04-02T12:55:00Z
4
value 0.0003
scoring_system epss
scoring_elements 0.08566
published_at 2026-04-04T12:55:00Z
5
value 0.00031
scoring_system epss
scoring_elements 0.08593
published_at 2026-04-18T12:55:00Z
6
value 0.00031
scoring_system epss
scoring_elements 0.08731
published_at 2026-04-12T12:55:00Z
7
value 0.00031
scoring_system epss
scoring_elements 0.08716
published_at 2026-04-13T12:55:00Z
8
value 0.00031
scoring_system epss
scoring_elements 0.08605
published_at 2026-04-16T12:55:00Z
9
value 0.00031
scoring_system epss
scoring_elements 0.08753
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-4438
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4438
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4438
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131887
reference_id 1131887
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1131887
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2449783
reference_id 2449783
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2449783
6
reference_url https://sourceware.org/bugzilla/show_bug.cgi?id=34015
reference_id show_bug.cgi?id=34015
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-23T15:06:13Z/
url https://sourceware.org/bugzilla/show_bug.cgi?id=34015
Weaknesses
0
cwe_id 838
name Inappropriate Encoding for Output Context
description The product uses or specifies an encoding when generating output to a downstream component, but the specified encoding is not the same as the encoding that is expected by the downstream component.
1
cwe_id 20
name Improper Input Validation
description The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Exploits
Severity_range_score4.0 - 5.4
Exploitability0.5
Weighted_severity3.6
Risk_score1.8
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-nwfb-xnks-1kg7