Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-5w1k-ccx8-pqfe
SummaryJDK: Information disclosure via calls to System.arraycopy() with invalid length
Aliases
0
alias CVE-2019-17639
Fixed_packages
Affected_packages
0
url pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.70-1jpp.1?arch=el7
purl pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.70-1jpp.1?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1nr6-3bq8-nbfn
1
vulnerability VCID-2ggq-ccut-5ycs
2
vulnerability VCID-4trq-2j9e-bbfd
3
vulnerability VCID-5w1k-ccx8-pqfe
4
vulnerability VCID-k3xn-hbrs-nkab
5
vulnerability VCID-tpng-ppye-m7hv
6
vulnerability VCID-wfjr-ddp6-mkd5
7
vulnerability VCID-y8wp-rpgd-kfht
8
vulnerability VCID-yqsu-y2mw-pqgt
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.70-1jpp.1%3Farch=el7
1
url pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.70-1jpp.1?arch=el6_10
purl pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.70-1jpp.1?arch=el6_10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1nr6-3bq8-nbfn
1
vulnerability VCID-2ggq-ccut-5ycs
2
vulnerability VCID-4trq-2j9e-bbfd
3
vulnerability VCID-5w1k-ccx8-pqfe
4
vulnerability VCID-k3xn-hbrs-nkab
5
vulnerability VCID-tpng-ppye-m7hv
6
vulnerability VCID-wfjr-ddp6-mkd5
7
vulnerability VCID-y8wp-rpgd-kfht
8
vulnerability VCID-yqsu-y2mw-pqgt
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.70-1jpp.1%3Farch=el6_10
2
url pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.15-1?arch=el8_2
purl pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.15-1?arch=el8_2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1nr6-3bq8-nbfn
1
vulnerability VCID-2ggq-ccut-5ycs
2
vulnerability VCID-4trq-2j9e-bbfd
3
vulnerability VCID-5w1k-ccx8-pqfe
4
vulnerability VCID-k3xn-hbrs-nkab
5
vulnerability VCID-tekc-e66p-tyba
6
vulnerability VCID-tpng-ppye-m7hv
7
vulnerability VCID-wfjr-ddp6-mkd5
8
vulnerability VCID-y8wp-rpgd-kfht
9
vulnerability VCID-yqsu-y2mw-pqgt
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.15-1%3Farch=el8_2
3
url pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.20-1jpp.1?arch=el7
purl pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.20-1jpp.1?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1nr6-3bq8-nbfn
1
vulnerability VCID-2ggq-ccut-5ycs
2
vulnerability VCID-3v2y-qzfu-nydb
3
vulnerability VCID-4trq-2j9e-bbfd
4
vulnerability VCID-5w1k-ccx8-pqfe
5
vulnerability VCID-7913-mqsn-3bd8
6
vulnerability VCID-k3xn-hbrs-nkab
7
vulnerability VCID-tekc-e66p-tyba
8
vulnerability VCID-tpng-ppye-m7hv
9
vulnerability VCID-upb2-1jmf-3udy
10
vulnerability VCID-wfjr-ddp6-mkd5
11
vulnerability VCID-y8wp-rpgd-kfht
12
vulnerability VCID-yqsu-y2mw-pqgt
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.20-1jpp.1%3Farch=el7
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17639.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17639.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17639
reference_id
reference_type
scores
0
value 0.00632
scoring_system epss
scoring_elements 0.70256
published_at 2026-04-01T12:55:00Z
1
value 0.00632
scoring_system epss
scoring_elements 0.70268
published_at 2026-04-02T12:55:00Z
2
value 0.00632
scoring_system epss
scoring_elements 0.70285
published_at 2026-04-04T12:55:00Z
3
value 0.00632
scoring_system epss
scoring_elements 0.70261
published_at 2026-04-07T12:55:00Z
4
value 0.00632
scoring_system epss
scoring_elements 0.70307
published_at 2026-04-08T12:55:00Z
5
value 0.00632
scoring_system epss
scoring_elements 0.70322
published_at 2026-04-09T12:55:00Z
6
value 0.00632
scoring_system epss
scoring_elements 0.70345
published_at 2026-04-11T12:55:00Z
7
value 0.00632
scoring_system epss
scoring_elements 0.7033
published_at 2026-04-12T12:55:00Z
8
value 0.00632
scoring_system epss
scoring_elements 0.70317
published_at 2026-04-13T12:55:00Z
9
value 0.00632
scoring_system epss
scoring_elements 0.7036
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17639
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1866497
reference_id 1866497
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1866497
3
reference_url https://access.redhat.com/errata/RHSA-2020:3386
reference_id RHSA-2020:3386
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3386
4
reference_url https://access.redhat.com/errata/RHSA-2020:3387
reference_id RHSA-2020:3387
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3387
5
reference_url https://access.redhat.com/errata/RHSA-2020:3388
reference_id RHSA-2020:3388
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3388
6
reference_url https://access.redhat.com/errata/RHSA-2020:5585
reference_id RHSA-2020:5585
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:5585
Weaknesses
0
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Exploits
Severity_range_score5.3 - 5.3
Exploitability0.5
Weighted_severity4.8
Risk_score2.4
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-5w1k-ccx8-pqfe