Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-4vr2-rn4g-bbep
Summaryrsyslog: parseLegacySyslogMsg off-by-two buffer overflow
Aliases
0
alias CVE-2011-3200
Fixed_packages
0
url pkg:deb/debian/rsyslog@5.8.5-1?distro=trixie
purl pkg:deb/debian/rsyslog@5.8.5-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@5.8.5-1%3Fdistro=trixie
1
url pkg:deb/debian/rsyslog@5.8.11-3%2Bdeb7u2
purl pkg:deb/debian/rsyslog@5.8.11-3%2Bdeb7u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2vuy-ga2a-2ke4
1
vulnerability VCID-7eg3-vksv-9bga
2
vulnerability VCID-8mwn-2k1d-rkfz
3
vulnerability VCID-96hb-thus-r3f2
4
vulnerability VCID-g5b3-53m2-yug1
5
vulnerability VCID-qh6a-u11q-g3gp
6
vulnerability VCID-s9gb-bjme-gkaf
7
vulnerability VCID-ybfq-unp3-dbav
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@5.8.11-3%252Bdeb7u2
2
url pkg:deb/debian/rsyslog@8.2102.0-2%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/rsyslog@8.2102.0-2%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2102.0-2%252Bdeb11u1%3Fdistro=trixie
3
url pkg:deb/debian/rsyslog@8.2302.0-1%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/rsyslog@8.2302.0-1%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2302.0-1%252Bdeb12u1%3Fdistro=trixie
4
url pkg:deb/debian/rsyslog@8.2504.0-1?distro=trixie
purl pkg:deb/debian/rsyslog@8.2504.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2504.0-1%3Fdistro=trixie
5
url pkg:deb/debian/rsyslog@8.2512.0-3?distro=trixie
purl pkg:deb/debian/rsyslog@8.2512.0-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2512.0-3%3Fdistro=trixie
6
url pkg:deb/debian/rsyslog@8.2602.0-1?distro=trixie
purl pkg:deb/debian/rsyslog@8.2602.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2602.0-1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/rsyslog@3.18.6-4
purl pkg:deb/debian/rsyslog@3.18.6-4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2vuy-ga2a-2ke4
1
vulnerability VCID-4vr2-rn4g-bbep
2
vulnerability VCID-7eg3-vksv-9bga
3
vulnerability VCID-8mwn-2k1d-rkfz
4
vulnerability VCID-96hb-thus-r3f2
5
vulnerability VCID-cbts-ng32-67e7
6
vulnerability VCID-cq52-ykyq-qug5
7
vulnerability VCID-g5b3-53m2-yug1
8
vulnerability VCID-gg4f-gzty-y7e1
9
vulnerability VCID-pgy6-vbk7-hkg8
10
vulnerability VCID-qh6a-u11q-g3gp
11
vulnerability VCID-s9gb-bjme-gkaf
12
vulnerability VCID-ybfq-unp3-dbav
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@3.18.6-4
1
url pkg:deb/debian/rsyslog@4.6.4-2
purl pkg:deb/debian/rsyslog@4.6.4-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2vuy-ga2a-2ke4
1
vulnerability VCID-4vr2-rn4g-bbep
2
vulnerability VCID-7eg3-vksv-9bga
3
vulnerability VCID-8mwn-2k1d-rkfz
4
vulnerability VCID-96hb-thus-r3f2
5
vulnerability VCID-cbts-ng32-67e7
6
vulnerability VCID-cq52-ykyq-qug5
7
vulnerability VCID-g5b3-53m2-yug1
8
vulnerability VCID-gg4f-gzty-y7e1
9
vulnerability VCID-pgy6-vbk7-hkg8
10
vulnerability VCID-qh6a-u11q-g3gp
11
vulnerability VCID-s9gb-bjme-gkaf
12
vulnerability VCID-ybfq-unp3-dbav
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@4.6.4-2
2
url pkg:deb/debian/rsyslog@4.6.4-2%2Bdeb6u2
purl pkg:deb/debian/rsyslog@4.6.4-2%2Bdeb6u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2vuy-ga2a-2ke4
1
vulnerability VCID-4vr2-rn4g-bbep
2
vulnerability VCID-7eg3-vksv-9bga
3
vulnerability VCID-8mwn-2k1d-rkfz
4
vulnerability VCID-96hb-thus-r3f2
5
vulnerability VCID-cbts-ng32-67e7
6
vulnerability VCID-cq52-ykyq-qug5
7
vulnerability VCID-g5b3-53m2-yug1
8
vulnerability VCID-gg4f-gzty-y7e1
9
vulnerability VCID-pgy6-vbk7-hkg8
10
vulnerability VCID-qh6a-u11q-g3gp
11
vulnerability VCID-s9gb-bjme-gkaf
12
vulnerability VCID-ybfq-unp3-dbav
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@4.6.4-2%252Bdeb6u2
3
url pkg:rpm/redhat/rsyslog@4.6.2-3.el6_1?arch=2
purl pkg:rpm/redhat/rsyslog@4.6.2-3.el6_1?arch=2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4vr2-rn4g-bbep
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rsyslog@4.6.2-3.el6_1%3Farch=2
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3200.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3200.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-3200
reference_id
reference_type
scores
0
value 0.6739
scoring_system epss
scoring_elements 0.98556
published_at 2026-04-01T12:55:00Z
1
value 0.6739
scoring_system epss
scoring_elements 0.98557
published_at 2026-04-02T12:55:00Z
2
value 0.6739
scoring_system epss
scoring_elements 0.9856
published_at 2026-04-04T12:55:00Z
3
value 0.6739
scoring_system epss
scoring_elements 0.98562
published_at 2026-04-07T12:55:00Z
4
value 0.6739
scoring_system epss
scoring_elements 0.98565
published_at 2026-04-08T12:55:00Z
5
value 0.6739
scoring_system epss
scoring_elements 0.98566
published_at 2026-04-09T12:55:00Z
6
value 0.6739
scoring_system epss
scoring_elements 0.98568
published_at 2026-04-12T12:55:00Z
7
value 0.6739
scoring_system epss
scoring_elements 0.98569
published_at 2026-04-13T12:55:00Z
8
value 0.6739
scoring_system epss
scoring_elements 0.98574
published_at 2026-04-16T12:55:00Z
9
value 0.6739
scoring_system epss
scoring_elements 0.98575
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-3200
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3200
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3200
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644611
reference_id 644611
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644611
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=727644
reference_id 727644
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=727644
5
reference_url https://access.redhat.com/errata/RHSA-2011:1247
reference_id RHSA-2011:1247
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:1247
6
reference_url https://usn.ubuntu.com/1224-1/
reference_id USN-1224-1
reference_type
scores
url https://usn.ubuntu.com/1224-1/
Weaknesses
Exploits
0
date_added null
description 
This module triggers an off-by-two overflow in the
        rsyslog daemon. This flaw is unlikely to yield code execution
        but is effective at shutting down a remote log daemon. This bug
        was introduced in version 4.6.0 and corrected in 4.6.8/5.8.5.
        Compiler differences may prevent this bug from causing any
        noticeable result on many systems (RHEL6 is affected).
required_action null
due_date null
notes 
Stability:
  - crash-service-down
SideEffects: []
Reliability: []
known_ransomware_campaign_use false
source_date_published 2011-09-01
exploit_type null
platform
source_date_updated null
data_source Metasploit
source_url https://github.com/rapid7/metasploit-framework/tree/master/modules/auxiliary/dos/syslog/rsyslog_long_tag.rb
Severity_range_scorenull
Exploitability2.0
Weighted_severity0.6
Risk_score1.2
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-4vr2-rn4g-bbep