Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-6mus-21kz-uuhz

Summary cups: Session cookie generated by the CUPS web interface is easy to guess

Aliases

alias	CVE-2018-4300

Fixed_packages

url	pkg:deb/debian/cups@2.2.10-1?distro=trixie
purl	pkg:deb/debian/cups@2.2.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.2.10-1%3Fdistro=trixie

url pkg:deb/debian/cups@2.2.10-6%2Bdeb10u6

purl pkg:deb/debian/cups@2.2.10-6%2Bdeb10u6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.2.10-6%252Bdeb10u6

url pkg:deb/debian/cups@2.3.3op2-3%2Bdeb11u8?distro=trixie

purl pkg:deb/debian/cups@2.3.3op2-3%2Bdeb11u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63fa-a4pr-wqh3

vulnerability	VCID-b1yf-xuc1-ykak

vulnerability	VCID-dx89-e1nn-w7gz

vulnerability	VCID-hc4t-becn-rkcc

vulnerability	VCID-jy1y-e1nk-p3b4

vulnerability	VCID-r1q4-2dq2-33ca

vulnerability	VCID-ry9y-z4e4-yfdh

vulnerability	VCID-vgtp-sjtt-73e9

vulnerability	VCID-wr17-e776-bqh1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.3.3op2-3%252Bdeb11u8%3Fdistro=trixie

url pkg:deb/debian/cups@2.4.2-3%2Bdeb12u9?distro=trixie

purl pkg:deb/debian/cups@2.4.2-3%2Bdeb12u9?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63fa-a4pr-wqh3

vulnerability	VCID-b1yf-xuc1-ykak

vulnerability	VCID-dx89-e1nn-w7gz

vulnerability	VCID-hc4t-becn-rkcc

vulnerability	VCID-jy1y-e1nk-p3b4

vulnerability	VCID-r1q4-2dq2-33ca

vulnerability	VCID-ry9y-z4e4-yfdh

vulnerability	VCID-vgtp-sjtt-73e9

vulnerability	VCID-wr17-e776-bqh1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.4.2-3%252Bdeb12u9%3Fdistro=trixie

url pkg:deb/debian/cups@2.4.10-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/cups@2.4.10-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63fa-a4pr-wqh3

vulnerability	VCID-b1yf-xuc1-ykak

vulnerability	VCID-dx89-e1nn-w7gz

vulnerability	VCID-hc4t-becn-rkcc

vulnerability	VCID-jy1y-e1nk-p3b4

vulnerability	VCID-r1q4-2dq2-33ca

vulnerability	VCID-ry9y-z4e4-yfdh

vulnerability	VCID-vgtp-sjtt-73e9

vulnerability	VCID-wr17-e776-bqh1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.4.10-3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/cups@2.4.16-1?distro=trixie

purl pkg:deb/debian/cups@2.4.16-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63fa-a4pr-wqh3

vulnerability	VCID-b1yf-xuc1-ykak

vulnerability	VCID-dx89-e1nn-w7gz

vulnerability	VCID-hc4t-becn-rkcc

vulnerability	VCID-r1q4-2dq2-33ca

vulnerability	VCID-ry9y-z4e4-yfdh

vulnerability	VCID-vgtp-sjtt-73e9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.4.16-1%3Fdistro=trixie

url	pkg:deb/debian/cups@2.4.17-1?distro=trixie
purl	pkg:deb/debian/cups@2.4.17-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.4.17-1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/cups@1.3.8-1%2Blenny10

purl pkg:deb/debian/cups@1.3.8-1%2Blenny10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-2weh-q66p-8bdg

vulnerability	VCID-35gf-189e-3ud4

vulnerability	VCID-39f1-22a5-c7aw

vulnerability	VCID-3ame-feez-yqhc

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-48ht-j7ga-9ugq

vulnerability	VCID-4bxg-5tnm-y3hw

vulnerability	VCID-4he8-q3nc-3bf7

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7gbc-682w-5fdq

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-843p-8xve-nfer

vulnerability	VCID-8yv6-g189-vugt

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-anr5-gc12-e7dr

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bj8b-t1mc-zfd3

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-cf81-58ju-bqaz

vulnerability	VCID-ed99-uccv-d7bh

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fby6-8f6z-63fw

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-fpbv-zqer-w7c3

vulnerability	VCID-g2x8-pm39-sfer

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-mcmb-bvw9-dba5

vulnerability	VCID-mp2s-4x2a-h7fq

vulnerability	VCID-mtwe-dgnd-c3fj

vulnerability	VCID-mtzd-538p-kbhm

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qjzr-avt1-fyfd

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-ucmb-we3r-aqcd

vulnerability	VCID-ukec-69r2-xbef

vulnerability	VCID-uqp7-5pb9-w7cg

vulnerability	VCID-ur43-jbhj-k7bk

vulnerability	VCID-vmjh-9kbz-qkh6

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wjht-u5u1-kkas

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-xp1f-4p3v-67ad

vulnerability	VCID-y7a9-2p1n-z7fx

vulnerability	VCID-yyrd-qt22-w3f5

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zm2g-nduw-tfcy

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@1.3.8-1%252Blenny10

url pkg:deb/debian/cups@1.4.4-7%2Bsqueeze5

purl pkg:deb/debian/cups@1.4.4-7%2Bsqueeze5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-35gf-189e-3ud4

vulnerability	VCID-39f1-22a5-c7aw

vulnerability	VCID-3ame-feez-yqhc

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-48ht-j7ga-9ugq

vulnerability	VCID-4bxg-5tnm-y3hw

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-843p-8xve-nfer

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-anr5-gc12-e7dr

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-cf81-58ju-bqaz

vulnerability	VCID-ed99-uccv-d7bh

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fby6-8f6z-63fw

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-mcmb-bvw9-dba5

vulnerability	VCID-mtzd-538p-kbhm

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-ucmb-we3r-aqcd

vulnerability	VCID-ukec-69r2-xbef

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wjht-u5u1-kkas

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-y7a9-2p1n-z7fx

vulnerability	VCID-yyrd-qt22-w3f5

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@1.4.4-7%252Bsqueeze5

url pkg:deb/debian/cups@1.4.4-7%2Bsqueeze10

purl pkg:deb/debian/cups@1.4.4-7%2Bsqueeze10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-35gf-189e-3ud4

vulnerability	VCID-39f1-22a5-c7aw

vulnerability	VCID-3ame-feez-yqhc

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-48ht-j7ga-9ugq

vulnerability	VCID-4bxg-5tnm-y3hw

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-843p-8xve-nfer

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-anr5-gc12-e7dr

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-cf81-58ju-bqaz

vulnerability	VCID-ed99-uccv-d7bh

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fby6-8f6z-63fw

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-mcmb-bvw9-dba5

vulnerability	VCID-mtzd-538p-kbhm

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-ucmb-we3r-aqcd

vulnerability	VCID-ukec-69r2-xbef

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wjht-u5u1-kkas

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-y7a9-2p1n-z7fx

vulnerability	VCID-yyrd-qt22-w3f5

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@1.4.4-7%252Bsqueeze10

url pkg:deb/debian/cups@1.5.3-5%2Bdeb7u6

purl pkg:deb/debian/cups@1.5.3-5%2Bdeb7u6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-35gf-189e-3ud4

vulnerability	VCID-3ame-feez-yqhc

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-anr5-gc12-e7dr

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-cf81-58ju-bqaz

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fby6-8f6z-63fw

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-ucmb-we3r-aqcd

vulnerability	VCID-ukec-69r2-xbef

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wjht-u5u1-kkas

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-yyrd-qt22-w3f5

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@1.5.3-5%252Bdeb7u6

url pkg:deb/debian/cups@1.7.5-11

purl pkg:deb/debian/cups@1.7.5-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-3ame-feez-yqhc

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-ucmb-we3r-aqcd

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@1.7.5-11

url pkg:deb/debian/cups@1.7.5-11%2Bdeb8u2

purl pkg:deb/debian/cups@1.7.5-11%2Bdeb8u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-3ame-feez-yqhc

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-ucmb-we3r-aqcd

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@1.7.5-11%252Bdeb8u2

url pkg:deb/debian/cups@2.2.1-8%2Bdeb9u1~bpo8%2B1

purl pkg:deb/debian/cups@2.2.1-8%2Bdeb9u1~bpo8%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.2.1-8%252Bdeb9u1~bpo8%252B1

url pkg:deb/debian/cups@2.2.1-8%2Bdeb9u6

purl pkg:deb/debian/cups@2.2.1-8%2Bdeb9u6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.2.1-8%252Bdeb9u6

url pkg:rpm/redhat/cups@1:1.6.3-43?arch=el7

purl pkg:rpm/redhat/cups@1:1.6.3-43?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-u2fg-ugbq-8ue4

vulnerability	VCID-w17y-dvuq-7ba6

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cups@1:1.6.3-43%3Farch=el7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-4300.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-4300.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-4300

reference_id

reference_type

scores

value	0.00377
scoring_system	epss
scoring_elements	0.5925
published_at	2026-04-21T12:55:00Z

value	0.00377
scoring_system	epss
scoring_elements	0.59226
published_at	2026-04-13T12:55:00Z

value	0.00377
scoring_system	epss
scoring_elements	0.59263
published_at	2026-04-16T12:55:00Z

value	0.00377
scoring_system	epss
scoring_elements	0.59268
published_at	2026-04-18T12:55:00Z

value	0.00492
scoring_system	epss
scoring_elements	0.65602
published_at	2026-04-02T12:55:00Z

value	0.00492
scoring_system	epss
scoring_elements	0.65632
published_at	2026-04-04T12:55:00Z

value	0.00492
scoring_system	epss
scoring_elements	0.65598
published_at	2026-04-07T12:55:00Z

value	0.00492
scoring_system	epss
scoring_elements	0.65649
published_at	2026-04-08T12:55:00Z

value	0.00492
scoring_system	epss
scoring_elements	0.65662
published_at	2026-04-09T12:55:00Z

value	0.00492
scoring_system	epss
scoring_elements	0.65682
published_at	2026-04-11T12:55:00Z

value	0.00492
scoring_system	epss
scoring_elements	0.65668
published_at	2026-04-12T12:55:00Z

value	0.00492
scoring_system	epss
scoring_elements	0.65554
published_at	2026-04-01T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-4300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4300

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/apple/cups/releases/tag/v2.2.10
reference_id
reference_type
scores
url	https://github.com/apple/cups/releases/tag/v2.2.10

reference_url	https://lists.debian.org/debian-lts-announce/2019/09/msg00028.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2019/09/msg00028.html

reference_url	http://www.securityfocus.com/bid/107785
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/107785

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1695929
reference_id	1695929
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1695929

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=915909
reference_id	915909
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=915909

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:cups::::::::
reference_id	cpe:2.3:a:apple:cups::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:cups::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-4300

reference_id

CVE-2018-4300

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:N/A:N

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2018-4300

reference_url	https://access.redhat.com/errata/RHSA-2020:1050
reference_id	RHSA-2020:1050
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1050

Weaknesses

cwe_id	330
name	Use of Insufficiently Random Values
description	The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

cwe_id	200
name	Exposure of Sensitive Information to an Unauthorized Actor
description	The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Exploits

Severity_range_score 4.3 - 8.1

Exploitability 0.5

Weighted_severity 6.6

Risk_score 3.3

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6mus-21kz-uuhz

Vulnerability Instance