Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-1uk5-6yqb-dyb5
Summarycpython: Out-of-memory when loading Plist
Aliases
0
alias CVE-2025-13837
Fixed_packages
0
url pkg:deb/debian/python3.13@3.13.11-1?distro=trixie
purl pkg:deb/debian/python3.13@3.13.11-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.13@3.13.11-1%3Fdistro=trixie
1
url pkg:deb/debian/python3.13@3.13.12-1?distro=trixie
purl pkg:deb/debian/python3.13@3.13.12-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zxzn-25zt-ukct
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.13@3.13.12-1%3Fdistro=trixie
2
url pkg:deb/debian/python3.13@3.13.12-1
purl pkg:deb/debian/python3.13@3.13.12-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zxzn-25zt-ukct
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.13@3.13.12-1
3
url pkg:deb/debian/python3.14@3.14.2-1?distro=sid
purl pkg:deb/debian/python3.14@3.14.2-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.2-1%3Fdistro=sid
4
url pkg:deb/debian/python3.14@3.14.3-3?distro=sid
purl pkg:deb/debian/python3.14@3.14.3-3?distro=sid
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11ed-tk56-8khn
1
vulnerability VCID-1pr1-jkqa-43g6
2
vulnerability VCID-9vcx-2fts-gkfw
3
vulnerability VCID-gqzt-rh1w-jkfu
4
vulnerability VCID-n4au-q9bs-kucb
5
vulnerability VCID-q653-8f64-gkbe
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-3%3Fdistro=sid
5
url pkg:deb/debian/python3.14@3.14.3-5?distro=sid
purl pkg:deb/debian/python3.14@3.14.3-5?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-5%3Fdistro=sid
6
url pkg:deb/debian/python3.14@3.14.4-1?distro=sid
purl pkg:deb/debian/python3.14@3.14.4-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.4-1%3Fdistro=sid
7
url pkg:deb/debian/python3.9@3.9.2-1?distro=bullseye
purl pkg:deb/debian/python3.9@3.9.2-1?distro=bullseye
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1%3Fdistro=bullseye
8
url pkg:deb/debian/python3.9@3.9.2-1%2Bdeb11u4?distro=bullseye
purl pkg:deb/debian/python3.9@3.9.2-1%2Bdeb11u4?distro=bullseye
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1%252Bdeb11u4%3Fdistro=bullseye
Affected_packages
0
url pkg:deb/debian/python3.13@3.13.5-2
purl pkg:deb/debian/python3.13@3.13.5-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1uk5-6yqb-dyb5
1
vulnerability VCID-8b19-pezx-6bcd
2
vulnerability VCID-8dtv-379a-wqfs
3
vulnerability VCID-94n7-6q4s-3udv
4
vulnerability VCID-bn83-d2qp-9bfy
5
vulnerability VCID-emaw-jmek-9bcy
6
vulnerability VCID-fcsb-dn49-47gy
7
vulnerability VCID-kn9b-2gxw-gqgx
8
vulnerability VCID-mtk7-qut6-syd8
9
vulnerability VCID-nqqc-u8d5-8qf6
10
vulnerability VCID-zh1r-7rzh-2bez
11
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.13@3.13.5-2
1
url pkg:deb/debian/python3.13@3.13.5-2?distro=trixie
purl pkg:deb/debian/python3.13@3.13.5-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1uk5-6yqb-dyb5
1
vulnerability VCID-8b19-pezx-6bcd
2
vulnerability VCID-8dtv-379a-wqfs
3
vulnerability VCID-94n7-6q4s-3udv
4
vulnerability VCID-bn83-d2qp-9bfy
5
vulnerability VCID-emaw-jmek-9bcy
6
vulnerability VCID-fcsb-dn49-47gy
7
vulnerability VCID-kn9b-2gxw-gqgx
8
vulnerability VCID-mtk7-qut6-syd8
9
vulnerability VCID-nqqc-u8d5-8qf6
10
vulnerability VCID-zh1r-7rzh-2bez
11
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.13@3.13.5-2%3Fdistro=trixie
2
url pkg:deb/debian/python3.9@3.9.2-1
purl pkg:deb/debian/python3.9@3.9.2-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1uk5-6yqb-dyb5
1
vulnerability VCID-2j3t-a3r6-vfg7
2
vulnerability VCID-2shb-2cvn-dyd2
3
vulnerability VCID-2v5u-2z4w-ffgx
4
vulnerability VCID-39e1-7qrc-53av
5
vulnerability VCID-4gsg-5e6s-63g4
6
vulnerability VCID-4z89-3tfk-pyge
7
vulnerability VCID-5maz-1h1k-3qfj
8
vulnerability VCID-7ka5-7jrn-dber
9
vulnerability VCID-7s7y-9bw5-m3ep
10
vulnerability VCID-8b19-pezx-6bcd
11
vulnerability VCID-8dtv-379a-wqfs
12
vulnerability VCID-94n7-6q4s-3udv
13
vulnerability VCID-9nvp-aus1-9yed
14
vulnerability VCID-9sms-mhht-n3aq
15
vulnerability VCID-a8mv-mr3q-vygz
16
vulnerability VCID-bn83-d2qp-9bfy
17
vulnerability VCID-bqp2-x383-xqfh
18
vulnerability VCID-ct6h-d1eh-7bgj
19
vulnerability VCID-dexx-3ssz-nqfg
20
vulnerability VCID-dnv8-yrd6-c7cv
21
vulnerability VCID-e6rs-jwvu-jycd
22
vulnerability VCID-e6sb-bh7v-9ugg
23
vulnerability VCID-emaw-jmek-9bcy
24
vulnerability VCID-ewbq-2gm8-tyf5
25
vulnerability VCID-fcsb-dn49-47gy
26
vulnerability VCID-h7z2-vc14-nfhq
27
vulnerability VCID-j8hj-k7wy-yfch
28
vulnerability VCID-js5p-py72-2kga
29
vulnerability VCID-kn9b-2gxw-gqgx
30
vulnerability VCID-mtk7-qut6-syd8
31
vulnerability VCID-nqqc-u8d5-8qf6
32
vulnerability VCID-qqh6-evfk-1fgy
33
vulnerability VCID-qwhz-912b-8kh5
34
vulnerability VCID-rcu5-gpmt-r7cb
35
vulnerability VCID-smck-sdx2-c7du
36
vulnerability VCID-tbuw-2msj-tqd9
37
vulnerability VCID-uf5s-kms5-g7a9
38
vulnerability VCID-v186-7sv1-ubej
39
vulnerability VCID-vpwj-d49q-1uh8
40
vulnerability VCID-z48d-eyxz-bycq
41
vulnerability VCID-zh1r-7rzh-2bez
42
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1
3
url pkg:rpm/redhat/python3-11-main@3.11.15-4?arch=hum1
purl pkg:rpm/redhat/python3-11-main@3.11.15-4?arch=hum1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1uk5-6yqb-dyb5
1
vulnerability VCID-8b19-pezx-6bcd
2
vulnerability VCID-8dtv-379a-wqfs
3
vulnerability VCID-94n7-6q4s-3udv
4
vulnerability VCID-bn83-d2qp-9bfy
5
vulnerability VCID-fcsb-dn49-47gy
6
vulnerability VCID-kn9b-2gxw-gqgx
7
vulnerability VCID-nqqc-u8d5-8qf6
8
vulnerability VCID-ygdw-ymrf-kqg1
9
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-11-main@3.11.15-4%3Farch=hum1
4
url pkg:rpm/redhat/python3-12-main@3.12.13-3?arch=hum1
purl pkg:rpm/redhat/python3-12-main@3.12.13-3?arch=hum1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1uk5-6yqb-dyb5
1
vulnerability VCID-8b19-pezx-6bcd
2
vulnerability VCID-8dtv-379a-wqfs
3
vulnerability VCID-94n7-6q4s-3udv
4
vulnerability VCID-bn83-d2qp-9bfy
5
vulnerability VCID-fcsb-dn49-47gy
6
vulnerability VCID-kn9b-2gxw-gqgx
7
vulnerability VCID-nqqc-u8d5-8qf6
8
vulnerability VCID-ygdw-ymrf-kqg1
9
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-12-main@3.12.13-3%3Farch=hum1
5
url pkg:rpm/redhat/python3-13-main@3.13.13-1?arch=hum1
purl pkg:rpm/redhat/python3-13-main@3.13.13-1?arch=hum1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11ed-tk56-8khn
1
vulnerability VCID-1pr1-jkqa-43g6
2
vulnerability VCID-1uk5-6yqb-dyb5
3
vulnerability VCID-39hb-75mq-hyet
4
vulnerability VCID-8b19-pezx-6bcd
5
vulnerability VCID-8dtv-379a-wqfs
6
vulnerability VCID-94n7-6q4s-3udv
7
vulnerability VCID-9vcx-2fts-gkfw
8
vulnerability VCID-bn83-d2qp-9bfy
9
vulnerability VCID-fcsb-dn49-47gy
10
vulnerability VCID-gqzt-rh1w-jkfu
11
vulnerability VCID-kn9b-2gxw-gqgx
12
vulnerability VCID-m4d3-db9x-h7h2
13
vulnerability VCID-n4au-q9bs-kucb
14
vulnerability VCID-nqqc-u8d5-8qf6
15
vulnerability VCID-q653-8f64-gkbe
16
vulnerability VCID-ygdw-ymrf-kqg1
17
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-13-main@3.13.13-1%3Farch=hum1
6
url pkg:rpm/redhat/python3-14-main@3.14.4-1?arch=hum1
purl pkg:rpm/redhat/python3-14-main@3.14.4-1?arch=hum1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-11ed-tk56-8khn
1
vulnerability VCID-1pr1-jkqa-43g6
2
vulnerability VCID-1uk5-6yqb-dyb5
3
vulnerability VCID-39hb-75mq-hyet
4
vulnerability VCID-8b19-pezx-6bcd
5
vulnerability VCID-8dtv-379a-wqfs
6
vulnerability VCID-94n7-6q4s-3udv
7
vulnerability VCID-9vcx-2fts-gkfw
8
vulnerability VCID-bn83-d2qp-9bfy
9
vulnerability VCID-fcsb-dn49-47gy
10
vulnerability VCID-gqzt-rh1w-jkfu
11
vulnerability VCID-kn9b-2gxw-gqgx
12
vulnerability VCID-m4d3-db9x-h7h2
13
vulnerability VCID-n4au-q9bs-kucb
14
vulnerability VCID-nqqc-u8d5-8qf6
15
vulnerability VCID-q653-8f64-gkbe
16
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3-14-main@3.14.4-1%3Farch=hum1
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13837.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13837.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-13837
reference_id
reference_type
scores
0
value 0.00036
scoring_system epss
scoring_elements 0.10652
published_at 2026-04-02T12:55:00Z
1
value 0.00036
scoring_system epss
scoring_elements 0.10668
published_at 2026-04-21T12:55:00Z
2
value 0.00036
scoring_system epss
scoring_elements 0.10713
published_at 2026-04-04T12:55:00Z
3
value 0.00036
scoring_system epss
scoring_elements 0.1057
published_at 2026-04-07T12:55:00Z
4
value 0.00036
scoring_system epss
scoring_elements 0.10643
published_at 2026-04-08T12:55:00Z
5
value 0.00036
scoring_system epss
scoring_elements 0.10701
published_at 2026-04-09T12:55:00Z
6
value 0.00036
scoring_system epss
scoring_elements 0.10714
published_at 2026-04-11T12:55:00Z
7
value 0.00036
scoring_system epss
scoring_elements 0.10683
published_at 2026-04-12T12:55:00Z
8
value 0.00036
scoring_system epss
scoring_elements 0.10659
published_at 2026-04-13T12:55:00Z
9
value 0.00036
scoring_system epss
scoring_elements 0.10522
published_at 2026-04-16T12:55:00Z
10
value 0.00036
scoring_system epss
scoring_elements 0.10539
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-13837
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126782
reference_id 1126782
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126782
5
reference_url https://github.com/python/cpython/issues/119342
reference_id 119342
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/issues/119342
6
reference_url https://github.com/python/cpython/pull/119343
reference_id 119343
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/pull/119343
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2418084
reference_id 2418084
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2418084
8
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C/
reference_id 2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C/
9
reference_url https://github.com/python/cpython/commit/568342cfc8f002d9a15f30238f26b9d2e0e79036
reference_id 568342cfc8f002d9a15f30238f26b9d2e0e79036
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/568342cfc8f002d9a15f30238f26b9d2e0e79036
10
reference_url https://github.com/python/cpython/commit/5a8b19677d818fb41ee55f310233772e15aa1a2b
reference_id 5a8b19677d818fb41ee55f310233772e15aa1a2b
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/5a8b19677d818fb41ee55f310233772e15aa1a2b
11
reference_url https://github.com/python/cpython/commit/694922cf40aa3a28f898b5f5ee08b71b4922df70
reference_id 694922cf40aa3a28f898b5f5ee08b71b4922df70
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/694922cf40aa3a28f898b5f5ee08b71b4922df70
12
reference_url https://github.com/python/cpython/commit/71fa8eb8233b37f16c88b6e3e583b461b205d1ba
reference_id 71fa8eb8233b37f16c88b6e3e583b461b205d1ba
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/71fa8eb8233b37f16c88b6e3e583b461b205d1ba
13
reference_url https://github.com/python/cpython/commit/b64441e4852383645af5b435411a6f849dd1b4cb
reference_id b64441e4852383645af5b435411a6f849dd1b4cb
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/b64441e4852383645af5b435411a6f849dd1b4cb
14
reference_url https://github.com/python/cpython/commit/cefee7d118a26ef6cd43db59bb9d98ca9a331111
reference_id cefee7d118a26ef6cd43db59bb9d98ca9a331111
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/
url https://github.com/python/cpython/commit/cefee7d118a26ef6cd43db59bb9d98ca9a331111
15
reference_url https://access.redhat.com/errata/RHSA-2026:7443
reference_id RHSA-2026:7443
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7443
16
reference_url https://access.redhat.com/errata/RHSA-2026:7661
reference_id RHSA-2026:7661
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7661
17
reference_url https://access.redhat.com/errata/RHSA-2026:8822
reference_id RHSA-2026:8822
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8822
18
reference_url https://access.redhat.com/errata/RHSA-2026:8824
reference_id RHSA-2026:8824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8824
19
reference_url https://usn.ubuntu.com/8018-1/
reference_id USN-8018-1
reference_type
scores
url https://usn.ubuntu.com/8018-1/
Weaknesses
0
cwe_id 770
name Allocation of Resources Without Limits or Throttling
description The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.
Exploits
Severity_range_score2.1 - 5.9
Exploitability0.5
Weighted_severity5.3
Risk_score2.6
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-1uk5-6yqb-dyb5