Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-468w-jcg1-efdc
Summaryhaproxy: Setting cookie containing internal IP address of a pod
Aliases
0
alias CVE-2016-3711
Fixed_packages
Affected_packages
0
url pkg:rpm/redhat/nodejs-openshift-auth-proxy@0.0.20-1?arch=el7aos
purl pkg:rpm/redhat/nodejs-openshift-auth-proxy@0.0.20-1?arch=el7aos
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-468w-jcg1-efdc
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/nodejs-openshift-auth-proxy@0.0.20-1%3Farch=el7aos
1
url pkg:rpm/redhat/nodejs-proxy-addr@1.0.8-2?arch=el7aos
purl pkg:rpm/redhat/nodejs-proxy-addr@1.0.8-2?arch=el7aos
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-468w-jcg1-efdc
1
vulnerability VCID-ep8y-hq9y-afcu
2
vulnerability VCID-jqgq-yvxr-r7hs
3
vulnerability VCID-u9ph-5sbd-mfgp
4
vulnerability VCID-vtvy-ec7a-xua9
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/nodejs-proxy-addr@1.0.8-2%3Farch=el7aos
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3711.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3711.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-3711
reference_id
reference_type
scores
0
value 0.00048
scoring_system epss
scoring_elements 0.14822
published_at 2026-04-24T12:55:00Z
1
value 0.00048
scoring_system epss
scoring_elements 0.14725
published_at 2026-04-18T12:55:00Z
2
value 0.00048
scoring_system epss
scoring_elements 0.14785
published_at 2026-04-21T12:55:00Z
3
value 0.00048
scoring_system epss
scoring_elements 0.14886
published_at 2026-04-01T12:55:00Z
4
value 0.00048
scoring_system epss
scoring_elements 0.14934
published_at 2026-04-02T12:55:00Z
5
value 0.00048
scoring_system epss
scoring_elements 0.15012
published_at 2026-04-04T12:55:00Z
6
value 0.00048
scoring_system epss
scoring_elements 0.14815
published_at 2026-04-07T12:55:00Z
7
value 0.00048
scoring_system epss
scoring_elements 0.14904
published_at 2026-04-08T12:55:00Z
8
value 0.00048
scoring_system epss
scoring_elements 0.14954
published_at 2026-04-09T12:55:00Z
9
value 0.00048
scoring_system epss
scoring_elements 0.14919
published_at 2026-04-11T12:55:00Z
10
value 0.00048
scoring_system epss
scoring_elements 0.14881
published_at 2026-04-12T12:55:00Z
11
value 0.00048
scoring_system epss
scoring_elements 0.14821
published_at 2026-04-13T12:55:00Z
12
value 0.00048
scoring_system epss
scoring_elements 0.14717
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-3711
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 1.9
scoring_system cvssv2
scoring_elements AV:L/AC:M/Au:N/C:P/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/openshift/origin/pull/8334
reference_id
reference_type
scores
url https://github.com/openshift/origin/pull/8334
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1322718
reference_id 1322718
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1322718
5
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift:3.2:*:*:*:enterprise:*:*:*
reference_id cpe:2.3:a:redhat:openshift:3.2:*:*:*:enterprise:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift:3.2:*:*:*:enterprise:*:*:*
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift_origin:-:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openshift_origin:-:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift_origin:-:*:*:*:*:*:*:*
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-3711
reference_id CVE-2016-3711
reference_type
scores
0
value 2.1
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:P/I:N/A:N
1
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2016-3711
8
reference_url https://access.redhat.com/errata/RHSA-2016:1064
reference_id RHSA-2016:1064
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:1064
Weaknesses
0
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Exploits
Severity_range_score1.9 - 3.3
Exploitability0.5
Weighted_severity3.0
Risk_score1.5
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-468w-jcg1-efdc