Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-y52x-tykj-4qcx

Summary php: Out of bounds access in php_pcre.c:php_pcre_replace_impl()

Aliases

alias	CVE-2017-9118

Fixed_packages

Affected_packages

url pkg:rpm/redhat/rh-php71-php@7.1.30-1?arch=el7

purl pkg:rpm/redhat/rh-php71-php@7.1.30-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1ap1-zugk-gbas

vulnerability	VCID-2frx-71st-5qar

vulnerability	VCID-2z59-w2uj-skgy

vulnerability	VCID-3v99-kbeq-47d8

vulnerability	VCID-4gxr-wh6g-bbbe

vulnerability	VCID-6xda-97rd-9bam

vulnerability	VCID-8dmb-887r-zqe8

vulnerability	VCID-8kme-kjne-xubq

vulnerability	VCID-af13-btr1-7qex

vulnerability	VCID-aphr-wqxe-h3du

vulnerability	VCID-b12z-p9yv-c7fb

vulnerability	VCID-c73c-1vw2-nfdf

vulnerability	VCID-ce8c-a78t-kkd9

vulnerability	VCID-dhmd-y13e-t7hm

vulnerability	VCID-g1b8-dkd3-j3a2

vulnerability	VCID-g677-513z-fygc

vulnerability	VCID-huuh-j4zk-p3bp

vulnerability	VCID-j3tj-mxke-1kga

vulnerability	VCID-jugh-v1yu-cbcv

vulnerability	VCID-nnxq-za85-73dk

vulnerability	VCID-nv53-k7pk-yqa7

vulnerability	VCID-p2fc-mdv6-a3b5

vulnerability	VCID-pn3v-35ge-fqa6

vulnerability	VCID-ps5m-es4t-5fbm

vulnerability	VCID-qwh1-37ux-73h8

vulnerability	VCID-rjc8-9tfv-sfdk

vulnerability	VCID-sszm-mvm2-m7ee

vulnerability	VCID-utwt-7gge-j7c7

vulnerability	VCID-vh94-jp2p-zygp

vulnerability	VCID-vtnn-62dq-yuee

vulnerability	VCID-xh65-k3uv-77af

vulnerability	VCID-y1mr-3hx7-mfgc

vulnerability	VCID-y52x-tykj-4qcx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-php71-php@7.1.30-1%3Farch=el7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9118.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9118.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9118

reference_id

reference_type

scores

value	0.00336
scoring_system	epss
scoring_elements	0.56364
published_at	2026-04-24T12:55:00Z

value	0.00336
scoring_system	epss
scoring_elements	0.56433
published_at	2026-04-13T12:55:00Z

value	0.00336
scoring_system	epss
scoring_elements	0.56465
published_at	2026-04-16T12:55:00Z

value	0.00336
scoring_system	epss
scoring_elements	0.56466
published_at	2026-04-18T12:55:00Z

value	0.00336
scoring_system	epss
scoring_elements	0.56437
published_at	2026-04-21T12:55:00Z

value	0.00439
scoring_system	epss
scoring_elements	0.63077
published_at	2026-04-07T12:55:00Z

value	0.00439
scoring_system	epss
scoring_elements	0.63146
published_at	2026-04-09T12:55:00Z

value	0.00439
scoring_system	epss
scoring_elements	0.63164
published_at	2026-04-11T12:55:00Z

value	0.00439
scoring_system	epss
scoring_elements	0.63149
published_at	2026-04-12T12:55:00Z

value	0.00439
scoring_system	epss
scoring_elements	0.63024
published_at	2026-04-01T12:55:00Z

value	0.00439
scoring_system	epss
scoring_elements	0.63129
published_at	2026-04-08T12:55:00Z

value	0.00439
scoring_system	epss
scoring_elements	0.63083
published_at	2026-04-02T12:55:00Z

value	0.00439
scoring_system	epss
scoring_elements	0.63112
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9118

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1611890
reference_id	1611890
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1611890

reference_url	https://access.redhat.com/errata/RHSA-2019:2519
reference_id	RHSA-2019:2519
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2519

reference_url	https://usn.ubuntu.com/5300-1/
reference_id	USN-5300-1
reference_type
scores
url	https://usn.ubuntu.com/5300-1/

reference_url	https://usn.ubuntu.com/5300-2/
reference_id	USN-5300-2
reference_type
scores
url	https://usn.ubuntu.com/5300-2/

reference_url	https://usn.ubuntu.com/5300-3/
reference_id	USN-5300-3
reference_type
scores
url	https://usn.ubuntu.com/5300-3/

Weaknesses

cwe_id	400
name	Uncontrolled Resource Consumption
description	The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

Exploits

Severity_range_score 5.3 - 5.3

Exploitability 0.5

Weighted_severity 4.8

Risk_score 2.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y52x-tykj-4qcx

Vulnerability Instance