Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-4cep-sxy3-y3da
SummaryThere is a Segmentation fault in the XmpParser::terminate() function in Exiv2 0.26, related to an exit call. A Crafted input will lead to a remote denial of service attack.
Aliases
0
alias CVE-2017-11340
1
alias PYSEC-2017-122
Fixed_packages
0
url pkg:deb/debian/exiv2@0?distro=trixie
purl pkg:deb/debian/exiv2@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/exiv2@0%3Fdistro=trixie
1
url pkg:deb/debian/exiv2@0.27.3-3%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/exiv2@0.27.3-3%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5m46-2feu-yuh1
1
vulnerability VCID-9nxb-v8b8-bkcf
2
vulnerability VCID-bpyz-ymzy-zufs
3
vulnerability VCID-cs4q-3rwr-vke4
4
vulnerability VCID-jtxa-kc5c-z7cr
5
vulnerability VCID-p48j-jh17-7fa9
6
vulnerability VCID-pxbv-ypp8-wkfs
7
vulnerability VCID-yyhh-t98b-cyen
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/exiv2@0.27.3-3%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/exiv2@0.27.6-1?distro=trixie
purl pkg:deb/debian/exiv2@0.27.6-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5m46-2feu-yuh1
1
vulnerability VCID-9nxb-v8b8-bkcf
2
vulnerability VCID-bpyz-ymzy-zufs
3
vulnerability VCID-cs4q-3rwr-vke4
4
vulnerability VCID-jtxa-kc5c-z7cr
5
vulnerability VCID-p48j-jh17-7fa9
6
vulnerability VCID-yyhh-t98b-cyen
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/exiv2@0.27.6-1%3Fdistro=trixie
3
url pkg:deb/debian/exiv2@0.28.5%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/exiv2@0.28.5%2Bdfsg-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9nxb-v8b8-bkcf
1
vulnerability VCID-bpyz-ymzy-zufs
2
vulnerability VCID-cs4q-3rwr-vke4
3
vulnerability VCID-p48j-jh17-7fa9
4
vulnerability VCID-yyhh-t98b-cyen
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/exiv2@0.28.5%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/exiv2@0.28.8%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/exiv2@0.28.8%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/exiv2@0.28.8%252Bdfsg-1%3Fdistro=trixie
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-11340
reference_id
reference_type
scores
0
value 0.01388
scoring_system epss
scoring_elements 0.80648
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-11340
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1470950
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://bugzilla.redhat.com/show_bug.cgi?id=1470950
Weaknesses
Exploits
Severity_range_score6.5 - 6.5
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-4cep-sxy3-y3da