Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-jpsm-jcx3-7qbn
SummaryBlueZ: Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability
Aliases
0
alias CVE-2023-27349
Fixed_packages
0
url pkg:deb/debian/bluez@5.55-3.1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/bluez@5.55-3.1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.55-3.1%252Bdeb11u1%3Fdistro=trixie
1
url pkg:deb/debian/bluez@5.55-3.1%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/bluez@5.55-3.1%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.55-3.1%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/bluez@5.66-1%2Bdeb12u2
purl pkg:deb/debian/bluez@5.66-1%2Bdeb12u2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.66-1%252Bdeb12u2
3
url pkg:deb/debian/bluez@5.66-1%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/bluez@5.66-1%2Bdeb12u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.66-1%252Bdeb12u2%3Fdistro=trixie
4
url pkg:deb/debian/bluez@5.68-1?distro=trixie
purl pkg:deb/debian/bluez@5.68-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.68-1%3Fdistro=trixie
5
url pkg:deb/debian/bluez@5.82-1.1?distro=trixie
purl pkg:deb/debian/bluez@5.82-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.82-1.1%3Fdistro=trixie
6
url pkg:deb/debian/bluez@5.85-4?distro=trixie
purl pkg:deb/debian/bluez@5.85-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.85-4%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/bluez@4.66-3
purl pkg:deb/debian/bluez@4.66-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15pa-mh4x-13ch
1
vulnerability VCID-1d6b-y23m-dqgf
2
vulnerability VCID-3fxv-jphd-cyfs
3
vulnerability VCID-5kag-2abg-qke2
4
vulnerability VCID-6d8c-y2y7-t3cj
5
vulnerability VCID-72rt-6t6r-87a8
6
vulnerability VCID-9317-anru-ekes
7
vulnerability VCID-ct1g-g65k-5kfa
8
vulnerability VCID-ctaf-8vuf-tqgg
9
vulnerability VCID-g2pd-d2mm-8fd3
10
vulnerability VCID-jpsm-jcx3-7qbn
11
vulnerability VCID-k5ch-vuyv-qbas
12
vulnerability VCID-m11w-wnaa-r7hb
13
vulnerability VCID-mfyz-6q2s-wfgu
14
vulnerability VCID-ntmp-nu8h-tuga
15
vulnerability VCID-sj7c-x4nm-eydm
16
vulnerability VCID-w7xy-k5ah-pkhg
17
vulnerability VCID-xh5e-xqx1-t3eq
18
vulnerability VCID-yrc6-qjud-zqaf
19
vulnerability VCID-zyyf-565p-h7d6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@4.66-3
1
url pkg:deb/debian/bluez@4.99-2
purl pkg:deb/debian/bluez@4.99-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15pa-mh4x-13ch
1
vulnerability VCID-1d6b-y23m-dqgf
2
vulnerability VCID-3fxv-jphd-cyfs
3
vulnerability VCID-5kag-2abg-qke2
4
vulnerability VCID-6d8c-y2y7-t3cj
5
vulnerability VCID-72rt-6t6r-87a8
6
vulnerability VCID-9317-anru-ekes
7
vulnerability VCID-ct1g-g65k-5kfa
8
vulnerability VCID-ctaf-8vuf-tqgg
9
vulnerability VCID-g2pd-d2mm-8fd3
10
vulnerability VCID-jpsm-jcx3-7qbn
11
vulnerability VCID-k5ch-vuyv-qbas
12
vulnerability VCID-m11w-wnaa-r7hb
13
vulnerability VCID-mfyz-6q2s-wfgu
14
vulnerability VCID-ntmp-nu8h-tuga
15
vulnerability VCID-sj7c-x4nm-eydm
16
vulnerability VCID-w7xy-k5ah-pkhg
17
vulnerability VCID-xh5e-xqx1-t3eq
18
vulnerability VCID-yrc6-qjud-zqaf
19
vulnerability VCID-zyyf-565p-h7d6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@4.99-2
2
url pkg:deb/debian/bluez@5.23-2
purl pkg:deb/debian/bluez@5.23-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15pa-mh4x-13ch
1
vulnerability VCID-1d6b-y23m-dqgf
2
vulnerability VCID-3fxv-jphd-cyfs
3
vulnerability VCID-5kag-2abg-qke2
4
vulnerability VCID-6d8c-y2y7-t3cj
5
vulnerability VCID-72rt-6t6r-87a8
6
vulnerability VCID-9317-anru-ekes
7
vulnerability VCID-ct1g-g65k-5kfa
8
vulnerability VCID-ctaf-8vuf-tqgg
9
vulnerability VCID-g2pd-d2mm-8fd3
10
vulnerability VCID-jpsm-jcx3-7qbn
11
vulnerability VCID-k5ch-vuyv-qbas
12
vulnerability VCID-m11w-wnaa-r7hb
13
vulnerability VCID-mfyz-6q2s-wfgu
14
vulnerability VCID-ntmp-nu8h-tuga
15
vulnerability VCID-sj7c-x4nm-eydm
16
vulnerability VCID-w7xy-k5ah-pkhg
17
vulnerability VCID-xh5e-xqx1-t3eq
18
vulnerability VCID-yrc6-qjud-zqaf
19
vulnerability VCID-zyyf-565p-h7d6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.23-2
3
url pkg:deb/debian/bluez@5.23-2%2Bdeb8u1
purl pkg:deb/debian/bluez@5.23-2%2Bdeb8u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15pa-mh4x-13ch
1
vulnerability VCID-1d6b-y23m-dqgf
2
vulnerability VCID-3fxv-jphd-cyfs
3
vulnerability VCID-5kag-2abg-qke2
4
vulnerability VCID-6d8c-y2y7-t3cj
5
vulnerability VCID-72rt-6t6r-87a8
6
vulnerability VCID-9317-anru-ekes
7
vulnerability VCID-ct1g-g65k-5kfa
8
vulnerability VCID-ctaf-8vuf-tqgg
9
vulnerability VCID-g2pd-d2mm-8fd3
10
vulnerability VCID-jpsm-jcx3-7qbn
11
vulnerability VCID-k5ch-vuyv-qbas
12
vulnerability VCID-m11w-wnaa-r7hb
13
vulnerability VCID-mfyz-6q2s-wfgu
14
vulnerability VCID-ntmp-nu8h-tuga
15
vulnerability VCID-sj7c-x4nm-eydm
16
vulnerability VCID-w7xy-k5ah-pkhg
17
vulnerability VCID-xh5e-xqx1-t3eq
18
vulnerability VCID-yrc6-qjud-zqaf
19
vulnerability VCID-zyyf-565p-h7d6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.23-2%252Bdeb8u1
4
url pkg:deb/debian/bluez@5.43-2%2Bdeb9u2
purl pkg:deb/debian/bluez@5.43-2%2Bdeb9u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15pa-mh4x-13ch
1
vulnerability VCID-1d6b-y23m-dqgf
2
vulnerability VCID-3fxv-jphd-cyfs
3
vulnerability VCID-5kag-2abg-qke2
4
vulnerability VCID-6d8c-y2y7-t3cj
5
vulnerability VCID-72rt-6t6r-87a8
6
vulnerability VCID-9317-anru-ekes
7
vulnerability VCID-ct1g-g65k-5kfa
8
vulnerability VCID-ctaf-8vuf-tqgg
9
vulnerability VCID-g2pd-d2mm-8fd3
10
vulnerability VCID-jpsm-jcx3-7qbn
11
vulnerability VCID-m11w-wnaa-r7hb
12
vulnerability VCID-mfyz-6q2s-wfgu
13
vulnerability VCID-ntmp-nu8h-tuga
14
vulnerability VCID-sj7c-x4nm-eydm
15
vulnerability VCID-w7xy-k5ah-pkhg
16
vulnerability VCID-xh5e-xqx1-t3eq
17
vulnerability VCID-yrc6-qjud-zqaf
18
vulnerability VCID-zyyf-565p-h7d6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.43-2%252Bdeb9u2
5
url pkg:deb/debian/bluez@5.50-1.2~deb10u2
purl pkg:deb/debian/bluez@5.50-1.2~deb10u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15pa-mh4x-13ch
1
vulnerability VCID-1d6b-y23m-dqgf
2
vulnerability VCID-3fxv-jphd-cyfs
3
vulnerability VCID-5kag-2abg-qke2
4
vulnerability VCID-6d8c-y2y7-t3cj
5
vulnerability VCID-72rt-6t6r-87a8
6
vulnerability VCID-9317-anru-ekes
7
vulnerability VCID-ct1g-g65k-5kfa
8
vulnerability VCID-ctaf-8vuf-tqgg
9
vulnerability VCID-g2pd-d2mm-8fd3
10
vulnerability VCID-jpsm-jcx3-7qbn
11
vulnerability VCID-m11w-wnaa-r7hb
12
vulnerability VCID-mfyz-6q2s-wfgu
13
vulnerability VCID-ntmp-nu8h-tuga
14
vulnerability VCID-sj7c-x4nm-eydm
15
vulnerability VCID-w7xy-k5ah-pkhg
16
vulnerability VCID-xh5e-xqx1-t3eq
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.50-1.2~deb10u2
6
url pkg:deb/debian/bluez@5.55-3.1%2Bdeb11u1
purl pkg:deb/debian/bluez@5.55-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-15pa-mh4x-13ch
1
vulnerability VCID-1d6b-y23m-dqgf
2
vulnerability VCID-3fxv-jphd-cyfs
3
vulnerability VCID-5kag-2abg-qke2
4
vulnerability VCID-ct1g-g65k-5kfa
5
vulnerability VCID-g2pd-d2mm-8fd3
6
vulnerability VCID-jpsm-jcx3-7qbn
7
vulnerability VCID-m11w-wnaa-r7hb
8
vulnerability VCID-mfyz-6q2s-wfgu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bluez@5.55-3.1%252Bdeb11u1
7
url pkg:rpm/redhat/bluez@5.63-5?arch=el8_10
purl pkg:rpm/redhat/bluez@5.63-5?arch=el8_10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zvr-61xy-mube
1
vulnerability VCID-jpsm-jcx3-7qbn
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bluez@5.63-5%3Farch=el8_10
8
url pkg:rpm/redhat/bluez@5.72-2?arch=el9
purl pkg:rpm/redhat/bluez@5.72-2?arch=el9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1d6b-y23m-dqgf
1
vulnerability VCID-2zvr-61xy-mube
2
vulnerability VCID-72rt-6t6r-87a8
3
vulnerability VCID-c954-9p73-jydq
4
vulnerability VCID-ew7j-44c4-p3ft
5
vulnerability VCID-jpsm-jcx3-7qbn
6
vulnerability VCID-jxwc-w5as-aubc
7
vulnerability VCID-kdkp-3kbp-2yeh
8
vulnerability VCID-mfyz-6q2s-wfgu
9
vulnerability VCID-ypuw-uqhj-v3hf
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bluez@5.72-2%3Farch=el9
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27349.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27349.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-27349
reference_id
reference_type
scores
0
value 0.03017
scoring_system epss
scoring_elements 0.86558
published_at 2026-04-02T12:55:00Z
1
value 0.03017
scoring_system epss
scoring_elements 0.86622
published_at 2026-04-16T12:55:00Z
2
value 0.03017
scoring_system epss
scoring_elements 0.86577
published_at 2026-04-07T12:55:00Z
3
value 0.03017
scoring_system epss
scoring_elements 0.86596
published_at 2026-04-08T12:55:00Z
4
value 0.03017
scoring_system epss
scoring_elements 0.86606
published_at 2026-04-09T12:55:00Z
5
value 0.03017
scoring_system epss
scoring_elements 0.8662
published_at 2026-04-11T12:55:00Z
6
value 0.03017
scoring_system epss
scoring_elements 0.86616
published_at 2026-04-12T12:55:00Z
7
value 0.03017
scoring_system epss
scoring_elements 0.86609
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-27349
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27349
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27349
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2278787
reference_id 2278787
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2278787
5
reference_url https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=f54299a850676d92c3dafd83e9174fcfe420ccc9
reference_id ?id=f54299a850676d92c3dafd83e9174fcfe420ccc9
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-16T17:38:51Z/
url https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=f54299a850676d92c3dafd83e9174fcfe420ccc9
6
reference_url https://lists.debian.org/debian-lts-announce/2024/05/msg00015.html
reference_id msg00015.html
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-16T17:38:51Z/
url https://lists.debian.org/debian-lts-announce/2024/05/msg00015.html
7
reference_url https://access.redhat.com/errata/RHSA-2024:9413
reference_id RHSA-2024:9413
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:9413
8
reference_url https://access.redhat.com/errata/RHSA-2025:4043
reference_id RHSA-2025:4043
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:4043
9
reference_url https://usn.ubuntu.com/6809-1/
reference_id USN-6809-1
reference_type
scores
url https://usn.ubuntu.com/6809-1/
10
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-386/
reference_id ZDI-23-386
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-16T17:38:51Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-386/
Weaknesses
0
cwe_id 129
name Improper Validation of Array Index
description The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.
Exploits
Severity_range_score7.1 - 8.0
Exploitability0.5
Weighted_severity6.4
Risk_score3.2
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-jpsm-jcx3-7qbn