Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-e8gf-g135-2kbk
SummarySalt 2015.8.x before 2015.8.4 does not properly handle clear messages on the minion, which allows man-in-the-middle attackers to execute arbitrary code by inserting packets into the minion-master data stream.
Aliases
0
alias CVE-2016-1866
1
alias GHSA-vqh4-crjf-jjxx
2
alias PYSEC-2016-23
Fixed_packages
0
url pkg:pypi/salt@2015.8.4
purl pkg:pypi/salt@2015.8.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15a9-6v52-mbhm
1
vulnerability VCID-2db5-ek61-2bdx
2
vulnerability VCID-35um-xhk7-5yeg
3
vulnerability VCID-3qku-wmk8-5bg1
4
vulnerability VCID-49dv-x94w-suda
5
vulnerability VCID-6y9z-4cqf-dbhh
6
vulnerability VCID-7k8b-xcq4-tyed
7
vulnerability VCID-7qmj-yzm7-yfhs
8
vulnerability VCID-7tgk-t6sy-cbbs
9
vulnerability VCID-84t6-tnd4-r3gq
10
vulnerability VCID-9agn-habm-fkh7
11
vulnerability VCID-9cpe-uywb-zfbc
12
vulnerability VCID-a5sa-utfb-yyc6
13
vulnerability VCID-a8mx-rnzd-jydu
14
vulnerability VCID-anh6-63ah-sfhj
15
vulnerability VCID-bddr-7e3e-gfch
16
vulnerability VCID-c3tf-kuxu-euaz
17
vulnerability VCID-daqt-gz5r-hbfs
18
vulnerability VCID-dqnw-edrq-hka2
19
vulnerability VCID-dttu-htyd-tkcc
20
vulnerability VCID-eq7b-wcab-rqfq
21
vulnerability VCID-fgrx-cjat-x7dc
22
vulnerability VCID-fm6f-fxrk-hqe2
23
vulnerability VCID-g5gy-3fk7-xbc8
24
vulnerability VCID-gfyd-1pm9-gfa9
25
vulnerability VCID-hzv7-m2fc-4uej
26
vulnerability VCID-jn54-7udz-8ydy
27
vulnerability VCID-k7nb-cgu8-tye8
28
vulnerability VCID-kfjs-6e5q-j3aj
29
vulnerability VCID-kpfs-vzc3-f3br
30
vulnerability VCID-n3sc-mzk3-n7cg
31
vulnerability VCID-n4vy-d4dh-x7gu
32
vulnerability VCID-qupk-axwe-k7dq
33
vulnerability VCID-qvxh-acut-7qhb
34
vulnerability VCID-r3m9-163d-myff
35
vulnerability VCID-w6j4-qrr2-3qae
36
vulnerability VCID-wvyr-dwg5-cya3
37
vulnerability VCID-z2wc-w8ae-q3a9
38
vulnerability VCID-z6gy-m65u-wqgh
39
vulnerability VCID-zc1e-1a3m-87c3
40
vulnerability VCID-zhu7-et2m-nycg
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/salt@2015.8.4
Affected_packages
0
url pkg:pypi/salt@2015.8.0rc1
purl pkg:pypi/salt@2015.8.0rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15a9-6v52-mbhm
1
vulnerability VCID-2db5-ek61-2bdx
2
vulnerability VCID-35um-xhk7-5yeg
3
vulnerability VCID-3qku-wmk8-5bg1
4
vulnerability VCID-49dv-x94w-suda
5
vulnerability VCID-6y9z-4cqf-dbhh
6
vulnerability VCID-7k8b-xcq4-tyed
7
vulnerability VCID-7qmj-yzm7-yfhs
8
vulnerability VCID-84t6-tnd4-r3gq
9
vulnerability VCID-8nts-xmw9-c7d9
10
vulnerability VCID-9agn-habm-fkh7
11
vulnerability VCID-9cpe-uywb-zfbc
12
vulnerability VCID-a5sa-utfb-yyc6
13
vulnerability VCID-a8mx-rnzd-jydu
14
vulnerability VCID-anh6-63ah-sfhj
15
vulnerability VCID-bddr-7e3e-gfch
16
vulnerability VCID-c3tf-kuxu-euaz
17
vulnerability VCID-daqt-gz5r-hbfs
18
vulnerability VCID-dqnw-edrq-hka2
19
vulnerability VCID-dttu-htyd-tkcc
20
vulnerability VCID-e8gf-g135-2kbk
21
vulnerability VCID-eq7b-wcab-rqfq
22
vulnerability VCID-fgrx-cjat-x7dc
23
vulnerability VCID-fm6f-fxrk-hqe2
24
vulnerability VCID-g5gy-3fk7-xbc8
25
vulnerability VCID-gfyd-1pm9-gfa9
26
vulnerability VCID-hzv7-m2fc-4uej
27
vulnerability VCID-jn54-7udz-8ydy
28
vulnerability VCID-k7nb-cgu8-tye8
29
vulnerability VCID-kfjs-6e5q-j3aj
30
vulnerability VCID-kpfs-vzc3-f3br
31
vulnerability VCID-n3sc-mzk3-n7cg
32
vulnerability VCID-n4vy-d4dh-x7gu
33
vulnerability VCID-qupk-axwe-k7dq
34
vulnerability VCID-qvxh-acut-7qhb
35
vulnerability VCID-r3m9-163d-myff
36
vulnerability VCID-w6j4-qrr2-3qae
37
vulnerability VCID-wvyr-dwg5-cya3
38
vulnerability VCID-z2wc-w8ae-q3a9
39
vulnerability VCID-z6gy-m65u-wqgh
40
vulnerability VCID-zc1e-1a3m-87c3
41
vulnerability VCID-zhu7-et2m-nycg
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/salt@2015.8.0rc1
1
url pkg:pypi/salt@2015.8.0
purl pkg:pypi/salt@2015.8.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15a9-6v52-mbhm
1
vulnerability VCID-2db5-ek61-2bdx
2
vulnerability VCID-35um-xhk7-5yeg
3
vulnerability VCID-3qku-wmk8-5bg1
4
vulnerability VCID-49dv-x94w-suda
5
vulnerability VCID-6y9z-4cqf-dbhh
6
vulnerability VCID-7k8b-xcq4-tyed
7
vulnerability VCID-7qmj-yzm7-yfhs
8
vulnerability VCID-7tgk-t6sy-cbbs
9
vulnerability VCID-84t6-tnd4-r3gq
10
vulnerability VCID-8nts-xmw9-c7d9
11
vulnerability VCID-9agn-habm-fkh7
12
vulnerability VCID-9cpe-uywb-zfbc
13
vulnerability VCID-a5sa-utfb-yyc6
14
vulnerability VCID-a8mx-rnzd-jydu
15
vulnerability VCID-anh6-63ah-sfhj
16
vulnerability VCID-bddr-7e3e-gfch
17
vulnerability VCID-c3tf-kuxu-euaz
18
vulnerability VCID-daqt-gz5r-hbfs
19
vulnerability VCID-dqnw-edrq-hka2
20
vulnerability VCID-dttu-htyd-tkcc
21
vulnerability VCID-e8gf-g135-2kbk
22
vulnerability VCID-eq7b-wcab-rqfq
23
vulnerability VCID-fgrx-cjat-x7dc
24
vulnerability VCID-fm6f-fxrk-hqe2
25
vulnerability VCID-g5gy-3fk7-xbc8
26
vulnerability VCID-gfyd-1pm9-gfa9
27
vulnerability VCID-hzv7-m2fc-4uej
28
vulnerability VCID-jn54-7udz-8ydy
29
vulnerability VCID-k7nb-cgu8-tye8
30
vulnerability VCID-kfjs-6e5q-j3aj
31
vulnerability VCID-kpfs-vzc3-f3br
32
vulnerability VCID-n3sc-mzk3-n7cg
33
vulnerability VCID-n4vy-d4dh-x7gu
34
vulnerability VCID-qupk-axwe-k7dq
35
vulnerability VCID-qvxh-acut-7qhb
36
vulnerability VCID-r3m9-163d-myff
37
vulnerability VCID-tp5m-acwp-m3b5
38
vulnerability VCID-w6j4-qrr2-3qae
39
vulnerability VCID-wvyr-dwg5-cya3
40
vulnerability VCID-z2wc-w8ae-q3a9
41
vulnerability VCID-z6gy-m65u-wqgh
42
vulnerability VCID-zc1e-1a3m-87c3
43
vulnerability VCID-zhu7-et2m-nycg
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/salt@2015.8.0
2
url pkg:pypi/salt@2015.8.1
purl pkg:pypi/salt@2015.8.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15a9-6v52-mbhm
1
vulnerability VCID-2db5-ek61-2bdx
2
vulnerability VCID-35um-xhk7-5yeg
3
vulnerability VCID-3qku-wmk8-5bg1
4
vulnerability VCID-49dv-x94w-suda
5
vulnerability VCID-6y9z-4cqf-dbhh
6
vulnerability VCID-7k8b-xcq4-tyed
7
vulnerability VCID-7qmj-yzm7-yfhs
8
vulnerability VCID-7tgk-t6sy-cbbs
9
vulnerability VCID-84t6-tnd4-r3gq
10
vulnerability VCID-8nts-xmw9-c7d9
11
vulnerability VCID-9agn-habm-fkh7
12
vulnerability VCID-9cpe-uywb-zfbc
13
vulnerability VCID-a5sa-utfb-yyc6
14
vulnerability VCID-a8mx-rnzd-jydu
15
vulnerability VCID-anh6-63ah-sfhj
16
vulnerability VCID-bddr-7e3e-gfch
17
vulnerability VCID-c3tf-kuxu-euaz
18
vulnerability VCID-daqt-gz5r-hbfs
19
vulnerability VCID-dqnw-edrq-hka2
20
vulnerability VCID-dttu-htyd-tkcc
21
vulnerability VCID-e8gf-g135-2kbk
22
vulnerability VCID-eq7b-wcab-rqfq
23
vulnerability VCID-fgrx-cjat-x7dc
24
vulnerability VCID-fm6f-fxrk-hqe2
25
vulnerability VCID-g5gy-3fk7-xbc8
26
vulnerability VCID-gfyd-1pm9-gfa9
27
vulnerability VCID-hzv7-m2fc-4uej
28
vulnerability VCID-jn54-7udz-8ydy
29
vulnerability VCID-k7nb-cgu8-tye8
30
vulnerability VCID-kfjs-6e5q-j3aj
31
vulnerability VCID-kpfs-vzc3-f3br
32
vulnerability VCID-n3sc-mzk3-n7cg
33
vulnerability VCID-n4vy-d4dh-x7gu
34
vulnerability VCID-qupk-axwe-k7dq
35
vulnerability VCID-qvxh-acut-7qhb
36
vulnerability VCID-r3m9-163d-myff
37
vulnerability VCID-w6j4-qrr2-3qae
38
vulnerability VCID-wvyr-dwg5-cya3
39
vulnerability VCID-z2wc-w8ae-q3a9
40
vulnerability VCID-z6gy-m65u-wqgh
41
vulnerability VCID-zc1e-1a3m-87c3
42
vulnerability VCID-zhu7-et2m-nycg
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/salt@2015.8.1
3
url pkg:pypi/salt@2015.8.2
purl pkg:pypi/salt@2015.8.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15a9-6v52-mbhm
1
vulnerability VCID-2db5-ek61-2bdx
2
vulnerability VCID-35um-xhk7-5yeg
3
vulnerability VCID-3qku-wmk8-5bg1
4
vulnerability VCID-49dv-x94w-suda
5
vulnerability VCID-6y9z-4cqf-dbhh
6
vulnerability VCID-7k8b-xcq4-tyed
7
vulnerability VCID-7qmj-yzm7-yfhs
8
vulnerability VCID-7tgk-t6sy-cbbs
9
vulnerability VCID-84t6-tnd4-r3gq
10
vulnerability VCID-8nts-xmw9-c7d9
11
vulnerability VCID-9agn-habm-fkh7
12
vulnerability VCID-9cpe-uywb-zfbc
13
vulnerability VCID-a5sa-utfb-yyc6
14
vulnerability VCID-a8mx-rnzd-jydu
15
vulnerability VCID-anh6-63ah-sfhj
16
vulnerability VCID-bddr-7e3e-gfch
17
vulnerability VCID-c3tf-kuxu-euaz
18
vulnerability VCID-daqt-gz5r-hbfs
19
vulnerability VCID-dqnw-edrq-hka2
20
vulnerability VCID-dttu-htyd-tkcc
21
vulnerability VCID-e8gf-g135-2kbk
22
vulnerability VCID-eq7b-wcab-rqfq
23
vulnerability VCID-fgrx-cjat-x7dc
24
vulnerability VCID-fm6f-fxrk-hqe2
25
vulnerability VCID-g5gy-3fk7-xbc8
26
vulnerability VCID-gfyd-1pm9-gfa9
27
vulnerability VCID-hzv7-m2fc-4uej
28
vulnerability VCID-jn54-7udz-8ydy
29
vulnerability VCID-k7nb-cgu8-tye8
30
vulnerability VCID-kfjs-6e5q-j3aj
31
vulnerability VCID-kpfs-vzc3-f3br
32
vulnerability VCID-n3sc-mzk3-n7cg
33
vulnerability VCID-n4vy-d4dh-x7gu
34
vulnerability VCID-qupk-axwe-k7dq
35
vulnerability VCID-qvxh-acut-7qhb
36
vulnerability VCID-r3m9-163d-myff
37
vulnerability VCID-w6j4-qrr2-3qae
38
vulnerability VCID-wvyr-dwg5-cya3
39
vulnerability VCID-z2wc-w8ae-q3a9
40
vulnerability VCID-z6gy-m65u-wqgh
41
vulnerability VCID-zc1e-1a3m-87c3
42
vulnerability VCID-zhu7-et2m-nycg
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/salt@2015.8.2
4
url pkg:pypi/salt@2015.8.3
purl pkg:pypi/salt@2015.8.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15a9-6v52-mbhm
1
vulnerability VCID-2db5-ek61-2bdx
2
vulnerability VCID-35um-xhk7-5yeg
3
vulnerability VCID-3qku-wmk8-5bg1
4
vulnerability VCID-49dv-x94w-suda
5
vulnerability VCID-6y9z-4cqf-dbhh
6
vulnerability VCID-7k8b-xcq4-tyed
7
vulnerability VCID-7qmj-yzm7-yfhs
8
vulnerability VCID-7tgk-t6sy-cbbs
9
vulnerability VCID-84t6-tnd4-r3gq
10
vulnerability VCID-9agn-habm-fkh7
11
vulnerability VCID-9cpe-uywb-zfbc
12
vulnerability VCID-a5sa-utfb-yyc6
13
vulnerability VCID-a8mx-rnzd-jydu
14
vulnerability VCID-anh6-63ah-sfhj
15
vulnerability VCID-bddr-7e3e-gfch
16
vulnerability VCID-c3tf-kuxu-euaz
17
vulnerability VCID-daqt-gz5r-hbfs
18
vulnerability VCID-dqnw-edrq-hka2
19
vulnerability VCID-dttu-htyd-tkcc
20
vulnerability VCID-e8gf-g135-2kbk
21
vulnerability VCID-eq7b-wcab-rqfq
22
vulnerability VCID-fgrx-cjat-x7dc
23
vulnerability VCID-fm6f-fxrk-hqe2
24
vulnerability VCID-g5gy-3fk7-xbc8
25
vulnerability VCID-gfyd-1pm9-gfa9
26
vulnerability VCID-hzv7-m2fc-4uej
27
vulnerability VCID-jn54-7udz-8ydy
28
vulnerability VCID-k7nb-cgu8-tye8
29
vulnerability VCID-kfjs-6e5q-j3aj
30
vulnerability VCID-kpfs-vzc3-f3br
31
vulnerability VCID-n3sc-mzk3-n7cg
32
vulnerability VCID-n4vy-d4dh-x7gu
33
vulnerability VCID-qupk-axwe-k7dq
34
vulnerability VCID-qvxh-acut-7qhb
35
vulnerability VCID-r3m9-163d-myff
36
vulnerability VCID-w6j4-qrr2-3qae
37
vulnerability VCID-wvyr-dwg5-cya3
38
vulnerability VCID-z2wc-w8ae-q3a9
39
vulnerability VCID-z6gy-m65u-wqgh
40
vulnerability VCID-zc1e-1a3m-87c3
41
vulnerability VCID-zhu7-et2m-nycg
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/salt@2015.8.3
References
0
reference_url http://lists.opensuse.org/opensuse-updates/2016-03/msg00034.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2016-03/msg00034.html
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-1866
reference_id
reference_type
scores
0
value 0.00628
scoring_system epss
scoring_elements 0.70575
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-1866
2
reference_url https://docs.saltstack.com/en/latest/topics/releases/2015.8.4.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://docs.saltstack.com/en/latest/topics/releases/2015.8.4.html
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/salt/PYSEC-2016-23.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/salt/PYSEC-2016-23.yaml
5
reference_url https://github.com/saltstack/salt
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/saltstack/salt
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-1866
reference_id CVE-2016-1866
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-1866
7
reference_url https://github.com/advisories/GHSA-vqh4-crjf-jjxx
reference_id GHSA-vqh4-crjf-jjxx
reference_type
scores
url https://github.com/advisories/GHSA-vqh4-crjf-jjxx
Weaknesses
0
cwe_id 284
name Improper Access Control
description The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-e8gf-g135-2kbk