Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-m4d3-db9x-h7h2
Summarycpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
Aliases
0
alias CVE-2025-12781
Fixed_packages
Affected_packages
0
url pkg:rpm/redhat/python3-13-main@3.13.13-1?arch=hum1
purl pkg:rpm/redhat/python3-13-main@3.13.13-1?arch=hum1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11ed-tk56-8khn
1
vulnerability VCID-1pr1-jkqa-43g6
2
vulnerability VCID-1uk5-6yqb-dyb5
3
vulnerability VCID-39hb-75mq-hyet
4
vulnerability VCID-8b19-pezx-6bcd
5
vulnerability VCID-8dtv-379a-wqfs
6
vulnerability VCID-94n7-6q4s-3udv
7
vulnerability VCID-9vcx-2fts-gkfw
8
vulnerability VCID-bn83-d2qp-9bfy
9
vulnerability VCID-fcsb-dn49-47gy
10
vulnerability VCID-gqzt-rh1w-jkfu
11
vulnerability VCID-kn9b-2gxw-gqgx
12
vulnerability VCID-m4d3-db9x-h7h2
13
vulnerability VCID-n4au-q9bs-kucb
14
vulnerability VCID-nqqc-u8d5-8qf6
15
vulnerability VCID-q653-8f64-gkbe
16
vulnerability VCID-ygdw-ymrf-kqg1
17
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-13-main@3.13.13-1%3Farch=hum1
1
url pkg:rpm/redhat/python3-14-main@3.14.4-1?arch=hum1
purl pkg:rpm/redhat/python3-14-main@3.14.4-1?arch=hum1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11ed-tk56-8khn
1
vulnerability VCID-1pr1-jkqa-43g6
2
vulnerability VCID-1uk5-6yqb-dyb5
3
vulnerability VCID-39hb-75mq-hyet
4
vulnerability VCID-8b19-pezx-6bcd
5
vulnerability VCID-8dtv-379a-wqfs
6
vulnerability VCID-94n7-6q4s-3udv
7
vulnerability VCID-9vcx-2fts-gkfw
8
vulnerability VCID-bn83-d2qp-9bfy
9
vulnerability VCID-fcsb-dn49-47gy
10
vulnerability VCID-gqzt-rh1w-jkfu
11
vulnerability VCID-kn9b-2gxw-gqgx
12
vulnerability VCID-m4d3-db9x-h7h2
13
vulnerability VCID-n4au-q9bs-kucb
14
vulnerability VCID-nqqc-u8d5-8qf6
15
vulnerability VCID-q653-8f64-gkbe
16
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-14-main@3.14.4-1%3Farch=hum1
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12781.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12781.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-12781
reference_id
reference_type
scores
0
value 0.00018
scoring_system epss
scoring_elements 0.04658
published_at 2026-04-02T12:55:00Z
1
value 0.00018
scoring_system epss
scoring_elements 0.04813
published_at 2026-04-21T12:55:00Z
2
value 0.00018
scoring_system epss
scoring_elements 0.0468
published_at 2026-04-04T12:55:00Z
3
value 0.00018
scoring_system epss
scoring_elements 0.04693
published_at 2026-04-07T12:55:00Z
4
value 0.00018
scoring_system epss
scoring_elements 0.04727
published_at 2026-04-08T12:55:00Z
5
value 0.00018
scoring_system epss
scoring_elements 0.04739
published_at 2026-04-09T12:55:00Z
6
value 0.00018
scoring_system epss
scoring_elements 0.0473
published_at 2026-04-11T12:55:00Z
7
value 0.00018
scoring_system epss
scoring_elements 0.04712
published_at 2026-04-12T12:55:00Z
8
value 0.00018
scoring_system epss
scoring_elements 0.04696
published_at 2026-04-13T12:55:00Z
9
value 0.00018
scoring_system epss
scoring_elements 0.04663
published_at 2026-04-16T12:55:00Z
10
value 0.00018
scoring_system epss
scoring_elements 0.04672
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-12781
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12781
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12781
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/python/cpython/issues/125346
reference_id 125346
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T14:53:47Z/
url https://github.com/python/cpython/issues/125346
5
reference_url https://github.com/python/cpython/commit/13360efd385d1a7d0659beba03787ea3d063ef9b
reference_id 13360efd385d1a7d0659beba03787ea3d063ef9b
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T14:53:47Z/
url https://github.com/python/cpython/commit/13360efd385d1a7d0659beba03787ea3d063ef9b
6
reference_url https://github.com/python/cpython/pull/141128
reference_id 141128
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T14:53:47Z/
url https://github.com/python/cpython/pull/141128
7
reference_url https://github.com/python/cpython/commit/1be80bec7960f5ccd059e75f3dfbd45fca302947
reference_id 1be80bec7960f5ccd059e75f3dfbd45fca302947
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T14:53:47Z/
url https://github.com/python/cpython/commit/1be80bec7960f5ccd059e75f3dfbd45fca302947
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431736
reference_id 2431736
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431736
9
reference_url https://github.com/python/cpython/commit/9060b4abbe475591b6230b23c2afefeff26fcca5
reference_id 9060b4abbe475591b6230b23c2afefeff26fcca5
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T14:53:47Z/
url https://github.com/python/cpython/commit/9060b4abbe475591b6230b23c2afefeff26fcca5
10
reference_url https://github.com/python/cpython/commit/e95e783dff443b68e8179fdb57737025bf02ba76
reference_id e95e783dff443b68e8179fdb57737025bf02ba76
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T14:53:47Z/
url https://github.com/python/cpython/commit/e95e783dff443b68e8179fdb57737025bf02ba76
11
reference_url https://github.com/python/cpython/commit/fd17ee026fa9b67f6288cbafe374a3e479fe03a5
reference_id fd17ee026fa9b67f6288cbafe374a3e479fe03a5
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T14:53:47Z/
url https://github.com/python/cpython/commit/fd17ee026fa9b67f6288cbafe374a3e479fe03a5
12
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/KRI7GC6S27YV5NJ4FPDALS2WI5ENAFJ6/
reference_id KRI7GC6S27YV5NJ4FPDALS2WI5ENAFJ6
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T14:53:47Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/KRI7GC6S27YV5NJ4FPDALS2WI5ENAFJ6/
13
reference_url https://access.redhat.com/errata/RHSA-2026:7443
reference_id RHSA-2026:7443
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7443
14
reference_url https://access.redhat.com/errata/RHSA-2026:7661
reference_id RHSA-2026:7661
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7661
Weaknesses
0
cwe_id 20
name Improper Input Validation
description The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Exploits
Severity_range_score3.3 - 6.3
Exploitability0.5
Weighted_severity5.7
Risk_score2.9
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-m4d3-db9x-h7h2