Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-decs-4e77-k7dr
Summaryhw: Intel SGX information leak
Aliases
0
alias CVE-2019-0117
Fixed_packages
0
url pkg:alpm/archlinux/intel-ucode@20191112-1
purl pkg:alpm/archlinux/intel-ucode@20191112-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/intel-ucode@20191112-1
Affected_packages
0
url pkg:alpm/archlinux/intel-ucode@20190918-1
purl pkg:alpm/archlinux/intel-ucode@20190918-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-51f1-g2fa-1bbp
1
vulnerability VCID-decs-4e77-k7dr
2
vulnerability VCID-ns7u-fmmr-5ba4
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/intel-ucode@20190918-1
1
url pkg:rpm/redhat/microcode_ctl@2:1.17-17.25?arch=el6_5
purl pkg:rpm/redhat/microcode_ctl@2:1.17-17.25?arch=el6_5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:1.17-17.25%3Farch=el6_5
2
url pkg:rpm/redhat/microcode_ctl@2:1.17-19.23?arch=el6_6
purl pkg:rpm/redhat/microcode_ctl@2:1.17-19.23?arch=el6_6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:1.17-19.23%3Farch=el6_6
3
url pkg:rpm/redhat/microcode_ctl@2:1.17-33.19?arch=el6_10
purl pkg:rpm/redhat/microcode_ctl@2:1.17-33.19?arch=el6_10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:1.17-33.19%3Farch=el6_10
4
url pkg:rpm/redhat/microcode_ctl@2:2.1-12.24?arch=el7_2
purl pkg:rpm/redhat/microcode_ctl@2:2.1-12.24?arch=el7_2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:2.1-12.24%3Farch=el7_2
5
url pkg:rpm/redhat/microcode_ctl@2:2.1-16.27?arch=el7_3
purl pkg:rpm/redhat/microcode_ctl@2:2.1-16.27?arch=el7_3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:2.1-16.27%3Farch=el7_3
6
url pkg:rpm/redhat/microcode_ctl@2:2.1-22.26?arch=el7_4
purl pkg:rpm/redhat/microcode_ctl@2:2.1-22.26?arch=el7_4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:2.1-22.26%3Farch=el7_4
7
url pkg:rpm/redhat/microcode_ctl@2:2.1-29.24?arch=el7_5
purl pkg:rpm/redhat/microcode_ctl@2:2.1-29.24?arch=el7_5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:2.1-29.24%3Farch=el7_5
8
url pkg:rpm/redhat/microcode_ctl@2:2.1-47.8?arch=el7_6
purl pkg:rpm/redhat/microcode_ctl@2:2.1-47.8?arch=el7_6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:2.1-47.8%3Farch=el7_6
9
url pkg:rpm/redhat/microcode_ctl@2:2.1-53.3?arch=el7_7
purl pkg:rpm/redhat/microcode_ctl@2:2.1-53.3?arch=el7_7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@2:2.1-53.3%3Farch=el7_7
10
url pkg:rpm/redhat/microcode_ctl@4:20180807a-2.20191112.1?arch=el8_0
purl pkg:rpm/redhat/microcode_ctl@4:20180807a-2.20191112.1?arch=el8_0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@4:20180807a-2.20191112.1%3Farch=el8_0
11
url pkg:rpm/redhat/microcode_ctl@4:20190618-1.20191112.1?arch=el8_1
purl pkg:rpm/redhat/microcode_ctl@4:20190618-1.20191112.1?arch=el8_1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-51f1-g2fa-1bbp
1
vulnerability VCID-decs-4e77-k7dr
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/microcode_ctl@4:20190618-1.20191112.1%3Farch=el8_1
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0117.json
reference_id
reference_type
scores
0
value 6.0
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0117.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-0117
reference_id
reference_type
scores
0
value 0.00134
scoring_system epss
scoring_elements 0.33017
published_at 2026-04-21T12:55:00Z
1
value 0.00134
scoring_system epss
scoring_elements 0.33036
published_at 2026-04-13T12:55:00Z
2
value 0.00134
scoring_system epss
scoring_elements 0.33078
published_at 2026-04-16T12:55:00Z
3
value 0.00134
scoring_system epss
scoring_elements 0.33055
published_at 2026-04-18T12:55:00Z
4
value 0.00147
scoring_system epss
scoring_elements 0.35292
published_at 2026-04-04T12:55:00Z
5
value 0.00147
scoring_system epss
scoring_elements 0.35218
published_at 2026-04-08T12:55:00Z
6
value 0.00147
scoring_system epss
scoring_elements 0.35243
published_at 2026-04-09T12:55:00Z
7
value 0.00147
scoring_system epss
scoring_elements 0.35246
published_at 2026-04-11T12:55:00Z
8
value 0.00147
scoring_system epss
scoring_elements 0.35211
published_at 2026-04-12T12:55:00Z
9
value 0.00147
scoring_system epss
scoring_elements 0.35064
published_at 2026-04-01T12:55:00Z
10
value 0.00147
scoring_system epss
scoring_elements 0.35173
published_at 2026-04-07T12:55:00Z
11
value 0.00147
scoring_system epss
scoring_elements 0.35263
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-0117
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1758414
reference_id 1758414
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1758414
3
reference_url https://security.archlinux.org/ASA-201911-14
reference_id ASA-201911-14
reference_type
scores
url https://security.archlinux.org/ASA-201911-14
4
reference_url https://security.archlinux.org/AVG-1068
reference_id AVG-1068
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1068
Weaknesses
0
cwe_id 1220
name Insufficient Granularity of Access Control
description The product implements access controls via a policy or other feature with the intention to disable or restrict accesses (reads and/or writes) to assets in a system from untrusted agents. However, implemented access controls lack required granularity, which renders the control policy too broad because it allows accesses from unauthorized agents to the security-sensitive assets.
1
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Exploits
Severity_range_score6.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-decs-4e77-k7dr