Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-167g-xgrw-kubp

Summary openvswitch: Mishandle of group mods in lib/ofp-util.c:parse_group_prop_ntr_selection_method() allows for assertion failure

Aliases

alias	CVE-2018-17204

Fixed_packages

url	pkg:deb/debian/openvswitch@2.10.0%2B2018.08.28%2Bgit.8ca7c82b7d%2Bds1-1?distro=trixie
purl	pkg:deb/debian/openvswitch@2.10.0%2B2018.08.28%2Bgit.8ca7c82b7d%2Bds1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@2.10.0%252B2018.08.28%252Bgit.8ca7c82b7d%252Bds1-1%3Fdistro=trixie

url pkg:deb/debian/openvswitch@2.10.0%2B2018.08.28%2Bgit.8ca7c82b7d%2Bds1-12%2Bdeb10u2

purl pkg:deb/debian/openvswitch@2.10.0%2B2018.08.28%2Bgit.8ca7c82b7d%2Bds1-12%2Bdeb10u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1rz7-uz9z-2kbr

vulnerability	VCID-5whw-rhdy-nkew

vulnerability	VCID-719y-s4zw-ekdc

vulnerability	VCID-at6t-sgxg-j7gr

vulnerability	VCID-buc7-dne2-yqaj

vulnerability	VCID-d8d2-d81a-nkgk

vulnerability	VCID-dz8t-nfj7-skgz

vulnerability	VCID-g5qm-fjsg-z3eq

vulnerability	VCID-jj4q-qp7b-j3hu

vulnerability	VCID-nw3h-mswm-v7d2

vulnerability	VCID-sq5h-zx4v-67hm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@2.10.0%252B2018.08.28%252Bgit.8ca7c82b7d%252Bds1-12%252Bdeb10u2

url pkg:deb/debian/openvswitch@2.15.0%2Bds1-2%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/openvswitch@2.15.0%2Bds1-2%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-y5t4-51s4-zqer

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@2.15.0%252Bds1-2%252Bdeb11u5%3Fdistro=trixie

url pkg:deb/debian/openvswitch@3.1.0-2%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/openvswitch@3.1.0-2%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-y5t4-51s4-zqer

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@3.1.0-2%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/openvswitch@3.5.0-1?distro=trixie

purl pkg:deb/debian/openvswitch@3.5.0-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-y5t4-51s4-zqer

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@3.5.0-1%3Fdistro=trixie

url	pkg:deb/debian/openvswitch@3.7.1-1?distro=trixie
purl	pkg:deb/debian/openvswitch@3.7.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@3.7.1-1%3Fdistro=trixie

url	pkg:deb/debian/openvswitch@3.7.1-2?distro=trixie
purl	pkg:deb/debian/openvswitch@3.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@3.7.1-2%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/openvswitch@1.4.2%2Bgit20120612-9.1~deb7u1.1

purl pkg:deb/debian/openvswitch@1.4.2%2Bgit20120612-9.1~deb7u1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-167g-xgrw-kubp

vulnerability	VCID-1rz7-uz9z-2kbr

vulnerability	VCID-21ps-f19w-87hx

vulnerability	VCID-2zq9-f9yb-v3gw

vulnerability	VCID-4rhb-vhvc-v3cx

vulnerability	VCID-5whw-rhdy-nkew

vulnerability	VCID-6gap-zvsn-fqg7

vulnerability	VCID-719y-s4zw-ekdc

vulnerability	VCID-at6t-sgxg-j7gr

vulnerability	VCID-buc7-dne2-yqaj

vulnerability	VCID-d8d2-d81a-nkgk

vulnerability	VCID-dz8t-nfj7-skgz

vulnerability	VCID-g5qm-fjsg-z3eq

vulnerability	VCID-grv1-ckdm-xbc9

vulnerability	VCID-jj4q-qp7b-j3hu

vulnerability	VCID-nw3h-mswm-v7d2

vulnerability	VCID-qrfh-87d5-ybh6

vulnerability	VCID-s6b4-xqmn-w3dc

vulnerability	VCID-sq5h-zx4v-67hm

vulnerability	VCID-suzt-srq7-6qbm

vulnerability	VCID-xcxc-et9w-uqhd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@1.4.2%252Bgit20120612-9.1~deb7u1.1

url pkg:deb/debian/openvswitch@2.3.0%2Bgit20140819-3

purl pkg:deb/debian/openvswitch@2.3.0%2Bgit20140819-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-167g-xgrw-kubp

vulnerability	VCID-1rz7-uz9z-2kbr

vulnerability	VCID-21ps-f19w-87hx

vulnerability	VCID-2zq9-f9yb-v3gw

vulnerability	VCID-4rhb-vhvc-v3cx

vulnerability	VCID-5whw-rhdy-nkew

vulnerability	VCID-6gap-zvsn-fqg7

vulnerability	VCID-719y-s4zw-ekdc

vulnerability	VCID-at6t-sgxg-j7gr

vulnerability	VCID-buc7-dne2-yqaj

vulnerability	VCID-d8d2-d81a-nkgk

vulnerability	VCID-dz8t-nfj7-skgz

vulnerability	VCID-g5qm-fjsg-z3eq

vulnerability	VCID-grv1-ckdm-xbc9

vulnerability	VCID-jj4q-qp7b-j3hu

vulnerability	VCID-nw3h-mswm-v7d2

vulnerability	VCID-qrfh-87d5-ybh6

vulnerability	VCID-s6b4-xqmn-w3dc

vulnerability	VCID-sq5h-zx4v-67hm

vulnerability	VCID-suzt-srq7-6qbm

vulnerability	VCID-xcxc-et9w-uqhd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@2.3.0%252Bgit20140819-3

url pkg:deb/debian/openvswitch@2.3.0%2Bgit20140819-3%2Bdeb8u1

purl pkg:deb/debian/openvswitch@2.3.0%2Bgit20140819-3%2Bdeb8u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-167g-xgrw-kubp

vulnerability	VCID-1rz7-uz9z-2kbr

vulnerability	VCID-21ps-f19w-87hx

vulnerability	VCID-2zq9-f9yb-v3gw

vulnerability	VCID-4rhb-vhvc-v3cx

vulnerability	VCID-5whw-rhdy-nkew

vulnerability	VCID-6gap-zvsn-fqg7

vulnerability	VCID-719y-s4zw-ekdc

vulnerability	VCID-at6t-sgxg-j7gr

vulnerability	VCID-buc7-dne2-yqaj

vulnerability	VCID-d8d2-d81a-nkgk

vulnerability	VCID-dz8t-nfj7-skgz

vulnerability	VCID-g5qm-fjsg-z3eq

vulnerability	VCID-grv1-ckdm-xbc9

vulnerability	VCID-jj4q-qp7b-j3hu

vulnerability	VCID-nw3h-mswm-v7d2

vulnerability	VCID-qrfh-87d5-ybh6

vulnerability	VCID-s6b4-xqmn-w3dc

vulnerability	VCID-sq5h-zx4v-67hm

vulnerability	VCID-suzt-srq7-6qbm

vulnerability	VCID-xcxc-et9w-uqhd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@2.3.0%252Bgit20140819-3%252Bdeb8u1

url pkg:deb/debian/openvswitch@2.6.2~pre%2Bgit20161223-3

purl pkg:deb/debian/openvswitch@2.6.2~pre%2Bgit20161223-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-167g-xgrw-kubp

vulnerability	VCID-1rz7-uz9z-2kbr

vulnerability	VCID-21ps-f19w-87hx

vulnerability	VCID-2zq9-f9yb-v3gw

vulnerability	VCID-4rhb-vhvc-v3cx

vulnerability	VCID-5whw-rhdy-nkew

vulnerability	VCID-6gap-zvsn-fqg7

vulnerability	VCID-719y-s4zw-ekdc

vulnerability	VCID-at6t-sgxg-j7gr

vulnerability	VCID-buc7-dne2-yqaj

vulnerability	VCID-d8d2-d81a-nkgk

vulnerability	VCID-dz8t-nfj7-skgz

vulnerability	VCID-g5qm-fjsg-z3eq

vulnerability	VCID-jj4q-qp7b-j3hu

vulnerability	VCID-nw3h-mswm-v7d2

vulnerability	VCID-qrfh-87d5-ybh6

vulnerability	VCID-s6b4-xqmn-w3dc

vulnerability	VCID-sq5h-zx4v-67hm

vulnerability	VCID-xcxc-et9w-uqhd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openvswitch@2.6.2~pre%252Bgit20161223-3

url pkg:rpm/redhat/openvswitch@2.9.0-70.el7fdp?arch=1

purl pkg:rpm/redhat/openvswitch@2.9.0-70.el7fdp?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-167g-xgrw-kubp

vulnerability	VCID-2zq9-f9yb-v3gw

vulnerability	VCID-6gap-zvsn-fqg7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openvswitch@2.9.0-70.el7fdp%3Farch=1

url pkg:rpm/redhat/openvswitch@2.9.0-83.el7fdp?arch=1

purl pkg:rpm/redhat/openvswitch@2.9.0-83.el7fdp?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-167g-xgrw-kubp

vulnerability	VCID-2zq9-f9yb-v3gw

vulnerability	VCID-6gap-zvsn-fqg7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openvswitch@2.9.0-83.el7fdp%3Farch=1

url pkg:rpm/redhat/redhat-release-virtualization-host@4.2-7.5?arch=el7

purl pkg:rpm/redhat/redhat-release-virtualization-host@4.2-7.5?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-167g-xgrw-kubp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/redhat-release-virtualization-host@4.2-7.5%3Farch=el7

url pkg:rpm/redhat/redhat-virtualization-host@4.2-20181121.0?arch=el7_6

purl pkg:rpm/redhat/redhat-virtualization-host@4.2-20181121.0?arch=el7_6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-167g-xgrw-kubp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/redhat-virtualization-host@4.2-20181121.0%3Farch=el7_6

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17204.json

reference_id

reference_type

scores

value	2.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17204.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-17204

reference_id

reference_type

scores

value	0.01127
scoring_system	epss
scoring_elements	0.78236
published_at	2026-04-01T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78244
published_at	2026-04-02T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78275
published_at	2026-04-04T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78257
published_at	2026-04-07T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78283
published_at	2026-04-08T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78289
published_at	2026-04-09T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78315
published_at	2026-04-11T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78297
published_at	2026-04-12T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78293
published_at	2026-04-13T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78322
published_at	2026-04-16T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.7832
published_at	2026-04-18T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78317
published_at	2026-04-21T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78349
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-17204

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17204
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17204

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1632522
reference_id	1632522
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1632522

reference_url	https://access.redhat.com/errata/RHSA-2018:3500
reference_id	RHSA-2018:3500
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3500

reference_url	https://access.redhat.com/errata/RHSA-2019:0053
reference_id	RHSA-2019:0053
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0053

reference_url	https://access.redhat.com/errata/RHSA-2019:0081
reference_id	RHSA-2019:0081
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0081

reference_url	https://usn.ubuntu.com/3873-1/
reference_id	USN-3873-1
reference_type
scores
url	https://usn.ubuntu.com/3873-1/

Weaknesses

cwe_id	20
name	Improper Input Validation
description	The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Exploits

Severity_range_score 2.7 - 6.5

Exploitability 0.5

Weighted_severity 3.2

Risk_score 1.6

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-167g-xgrw-kubp

Vulnerability Instance