Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-zhz3-1799-a7hk

Summary calibre: Calibre: Arbitrary Code Execution via malicious custom template file during ebook conversion

Aliases

alias	CVE-2026-25731

Fixed_packages

url	pkg:deb/debian/calibre@8.16.2%2Bds%2B~0.10.5-3~bpo13%2B1
purl	pkg:deb/debian/calibre@8.16.2%2Bds%2B~0.10.5-3~bpo13%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.16.2%252Bds%252B~0.10.5-3~bpo13%252B1

url	pkg:deb/debian/calibre@9.2.0%2Bds%2B~0.10.5-1?distro=trixie
purl	pkg:deb/debian/calibre@9.2.0%2Bds%2B~0.10.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.2.0%252Bds%252B~0.10.5-1%3Fdistro=trixie

url	pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie
purl	pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie

url	pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie
purl	pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie

url	pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie
purl	pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie

purl pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2w1b-b6qm-4qhf

vulnerability	VCID-b3vv-xdp2-7ub8

vulnerability	VCID-bjj5-ynf7-v7aa

vulnerability	VCID-dywq-dzuv-wka2

vulnerability	VCID-hgmk-8s7s-tfdb

vulnerability	VCID-jwpx-aqjh-dqej

vulnerability	VCID-mqmp-g7uy-gbg4

vulnerability	VCID-nj3z-4ya4-bqf7

vulnerability	VCID-vq4p-dvg4-eudz

vulnerability	VCID-x63d-4kux-cqcu

vulnerability	VCID-zhz3-1799-a7hk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2

purl pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2w1b-b6qm-4qhf

vulnerability	VCID-4gvv-bsf9-vqca

vulnerability	VCID-b3vv-xdp2-7ub8

vulnerability	VCID-bjj5-ynf7-v7aa

vulnerability	VCID-dywq-dzuv-wka2

vulnerability	VCID-favj-1bjh-9uff

vulnerability	VCID-hgmk-8s7s-tfdb

vulnerability	VCID-jwpx-aqjh-dqej

vulnerability	VCID-mqmp-g7uy-gbg4

vulnerability	VCID-nj3z-4ya4-bqf7

vulnerability	VCID-vq4p-dvg4-eudz

vulnerability	VCID-x63d-4kux-cqcu

vulnerability	VCID-zhz3-1799-a7hk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2

url pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2w1b-b6qm-4qhf

vulnerability	VCID-bjj5-ynf7-v7aa

vulnerability	VCID-dywq-dzuv-wka2

vulnerability	VCID-hgmk-8s7s-tfdb

vulnerability	VCID-jwpx-aqjh-dqej

vulnerability	VCID-mqmp-g7uy-gbg4

vulnerability	VCID-nj3z-4ya4-bqf7

vulnerability	VCID-vq4p-dvg4-eudz

vulnerability	VCID-x63d-4kux-cqcu

vulnerability	VCID-zhz3-1799-a7hk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5

purl pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2w1b-b6qm-4qhf

vulnerability	VCID-bjj5-ynf7-v7aa

vulnerability	VCID-dywq-dzuv-wka2

vulnerability	VCID-hgmk-8s7s-tfdb

vulnerability	VCID-jwpx-aqjh-dqej

vulnerability	VCID-mqmp-g7uy-gbg4

vulnerability	VCID-nj3z-4ya4-bqf7

vulnerability	VCID-vq4p-dvg4-eudz

vulnerability	VCID-x63d-4kux-cqcu

vulnerability	VCID-zhz3-1799-a7hk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5

url pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2w1b-b6qm-4qhf

vulnerability	VCID-bjj5-ynf7-v7aa

vulnerability	VCID-dywq-dzuv-wka2

vulnerability	VCID-hgmk-8s7s-tfdb

vulnerability	VCID-jwpx-aqjh-dqej

vulnerability	VCID-mqmp-g7uy-gbg4

vulnerability	VCID-nj3z-4ya4-bqf7

vulnerability	VCID-vq4p-dvg4-eudz

vulnerability	VCID-x63d-4kux-cqcu

vulnerability	VCID-zhz3-1799-a7hk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1

purl pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2w1b-b6qm-4qhf

vulnerability	VCID-bjj5-ynf7-v7aa

vulnerability	VCID-dywq-dzuv-wka2

vulnerability	VCID-hgmk-8s7s-tfdb

vulnerability	VCID-jwpx-aqjh-dqej

vulnerability	VCID-mqmp-g7uy-gbg4

vulnerability	VCID-nj3z-4ya4-bqf7

vulnerability	VCID-vq4p-dvg4-eudz

vulnerability	VCID-x63d-4kux-cqcu

vulnerability	VCID-zhz3-1799-a7hk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-25731.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-25731.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-25731

reference_id

reference_type

scores

value	0.0001
scoring_system	epss
scoring_elements	0.01177
published_at	2026-04-18T12:55:00Z

value	0.0001
scoring_system	epss
scoring_elements	0.01166
published_at	2026-04-16T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00905
published_at	2026-04-02T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.0091
published_at	2026-04-09T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00913
published_at	2026-04-08T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00898
published_at	2026-04-11T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00893
published_at	2026-04-12T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00895
published_at	2026-04-13T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00907
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-25731

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25731
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25731

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2437917
reference_id	2437917
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2437917

reference_url

https://github.com/kovidgoyal/calibre/commit/f0649b27512e987b95fcab2e1e0a3bcdafc23379

reference_id

f0649b27512e987b95fcab2e1e0a3bcdafc23379

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-02-06T21:01:31Z/

url

https://github.com/kovidgoyal/calibre/commit/f0649b27512e987b95fcab2e1e0a3bcdafc23379

reference_url

https://github.com/kovidgoyal/calibre/security/advisories/GHSA-xrh9-w7qx-3gcc

reference_id

GHSA-xrh9-w7qx-3gcc

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-02-06T21:01:31Z/

url

https://github.com/kovidgoyal/calibre/security/advisories/GHSA-xrh9-w7qx-3gcc

Weaknesses

cwe_id	917
name	Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
description	The product constructs all or part of an expression language (EL) statement in a framework such as a Java Server Page (JSP) using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended EL statement before it is executed.

cwe_id	1336
name	Improper Neutralization of Special Elements Used in a Template Engine
description	The product uses a template engine to insert or process externally-influenced input, but it does not neutralize or incorrectly neutralizes special elements or syntax that can be interpreted as template expressions or other code directives when processed by the engine.

Exploits

Severity_range_score 7.8 - 7.8

Exploitability 0.5

Weighted_severity 7.0

Risk_score 3.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zhz3-1799-a7hk

Vulnerability Instance