Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-b768-gzr4-fbge
Summaryforeman: world-readable OMAPI secret through the ISC DHCP server
Aliases
0
alias CVE-2020-14335
Fixed_packages
Affected_packages
0
url pkg:rpm/redhat/foreman@2.3.1.20-1?arch=el7sat
purl pkg:rpm/redhat/foreman@2.3.1.20-1?arch=el7sat
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1xgz-hwng-n3eq
1
vulnerability VCID-31xv-z8c6-a7bg
2
vulnerability VCID-6wbv-1r3c-akd3
3
vulnerability VCID-895a-ydc5-zfg6
4
vulnerability VCID-a6sp-18av-wya6
5
vulnerability VCID-b768-gzr4-fbge
6
vulnerability VCID-es1t-7196-4kbb
7
vulnerability VCID-mnkw-23eu-bkgc
8
vulnerability VCID-q4x5-bxn7-5yht
9
vulnerability VCID-t684-yp58-hkg8
10
vulnerability VCID-vhdm-w6p1-uuh9
11
vulnerability VCID-yw62-qbkq-9ygq
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/foreman@2.3.1.20-1%3Farch=el7sat
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14335.json
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14335.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-14335
reference_id
reference_type
scores
0
value 0.00103
scoring_system epss
scoring_elements 0.28245
published_at 2026-04-01T12:55:00Z
1
value 0.00103
scoring_system epss
scoring_elements 0.28316
published_at 2026-04-02T12:55:00Z
2
value 0.00103
scoring_system epss
scoring_elements 0.28359
published_at 2026-04-04T12:55:00Z
3
value 0.00103
scoring_system epss
scoring_elements 0.2815
published_at 2026-04-07T12:55:00Z
4
value 0.00103
scoring_system epss
scoring_elements 0.28216
published_at 2026-04-08T12:55:00Z
5
value 0.00103
scoring_system epss
scoring_elements 0.28259
published_at 2026-04-09T12:55:00Z
6
value 0.00103
scoring_system epss
scoring_elements 0.28264
published_at 2026-04-11T12:55:00Z
7
value 0.00103
scoring_system epss
scoring_elements 0.2822
published_at 2026-04-12T12:55:00Z
8
value 0.00103
scoring_system epss
scoring_elements 0.28162
published_at 2026-04-13T12:55:00Z
9
value 0.00103
scoring_system epss
scoring_elements 0.28175
published_at 2026-04-16T12:55:00Z
10
value 0.00103
scoring_system epss
scoring_elements 0.28157
published_at 2026-04-18T12:55:00Z
11
value 0.00103
scoring_system epss
scoring_elements 0.28112
published_at 2026-04-21T12:55:00Z
12
value 0.00103
scoring_system epss
scoring_elements 0.28028
published_at 2026-04-24T12:55:00Z
13
value 0.00103
scoring_system epss
scoring_elements 0.27915
published_at 2026-04-26T12:55:00Z
14
value 0.00103
scoring_system epss
scoring_elements 0.27838
published_at 2026-04-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-14335
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1858302
reference_id 1858302
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1858302
3
reference_url https://access.redhat.com/errata/RHSA-2021:1313
reference_id RHSA-2021:1313
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1313
Weaknesses
0
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Exploits
Severity_range_score5.8 - 5.8
Exploitability0.5
Weighted_severity5.2
Risk_score2.6
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-b768-gzr4-fbge