Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-8yv6-g189-vugt

Summary cups: DoS (daemon crash) caused by the large number of subscriptions

Aliases

alias	CVE-2008-5183

Fixed_packages

url	pkg:deb/debian/cups@2.4.17-1?distro=trixie
purl	pkg:deb/debian/cups@2.4.17-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.4.17-1%3Fdistro=trixie

url	pkg:deb/debian/cups@1.3.9-13?distro=trixie
purl	pkg:deb/debian/cups@1.3.9-13?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@1.3.9-13%3Fdistro=trixie

url pkg:deb/debian/cups@1.4.4-7%2Bsqueeze5

purl pkg:deb/debian/cups@1.4.4-7%2Bsqueeze5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-35gf-189e-3ud4

vulnerability	VCID-39f1-22a5-c7aw

vulnerability	VCID-3ame-feez-yqhc

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-48ht-j7ga-9ugq

vulnerability	VCID-4bxg-5tnm-y3hw

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-843p-8xve-nfer

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-anr5-gc12-e7dr

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-cf81-58ju-bqaz

vulnerability	VCID-ed99-uccv-d7bh

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fby6-8f6z-63fw

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-mcmb-bvw9-dba5

vulnerability	VCID-mtzd-538p-kbhm

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-ucmb-we3r-aqcd

vulnerability	VCID-ukec-69r2-xbef

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wjht-u5u1-kkas

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-y7a9-2p1n-z7fx

vulnerability	VCID-yyrd-qt22-w3f5

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@1.4.4-7%252Bsqueeze5

url pkg:deb/debian/cups@2.3.3op2-3%2Bdeb11u8?distro=trixie

purl pkg:deb/debian/cups@2.3.3op2-3%2Bdeb11u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63fa-a4pr-wqh3

vulnerability	VCID-b1yf-xuc1-ykak

vulnerability	VCID-dx89-e1nn-w7gz

vulnerability	VCID-hc4t-becn-rkcc

vulnerability	VCID-jy1y-e1nk-p3b4

vulnerability	VCID-r1q4-2dq2-33ca

vulnerability	VCID-ry9y-z4e4-yfdh

vulnerability	VCID-vgtp-sjtt-73e9

vulnerability	VCID-wr17-e776-bqh1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.3.3op2-3%252Bdeb11u8%3Fdistro=trixie

url pkg:deb/debian/cups@2.4.2-3%2Bdeb12u9?distro=trixie

purl pkg:deb/debian/cups@2.4.2-3%2Bdeb12u9?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63fa-a4pr-wqh3

vulnerability	VCID-b1yf-xuc1-ykak

vulnerability	VCID-dx89-e1nn-w7gz

vulnerability	VCID-hc4t-becn-rkcc

vulnerability	VCID-jy1y-e1nk-p3b4

vulnerability	VCID-r1q4-2dq2-33ca

vulnerability	VCID-ry9y-z4e4-yfdh

vulnerability	VCID-vgtp-sjtt-73e9

vulnerability	VCID-wr17-e776-bqh1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.4.2-3%252Bdeb12u9%3Fdistro=trixie

url pkg:deb/debian/cups@2.4.10-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/cups@2.4.10-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63fa-a4pr-wqh3

vulnerability	VCID-b1yf-xuc1-ykak

vulnerability	VCID-dx89-e1nn-w7gz

vulnerability	VCID-hc4t-becn-rkcc

vulnerability	VCID-jy1y-e1nk-p3b4

vulnerability	VCID-r1q4-2dq2-33ca

vulnerability	VCID-ry9y-z4e4-yfdh

vulnerability	VCID-vgtp-sjtt-73e9

vulnerability	VCID-wr17-e776-bqh1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.4.10-3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/cups@2.4.16-1?distro=trixie

purl pkg:deb/debian/cups@2.4.16-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63fa-a4pr-wqh3

vulnerability	VCID-b1yf-xuc1-ykak

vulnerability	VCID-dx89-e1nn-w7gz

vulnerability	VCID-hc4t-becn-rkcc

vulnerability	VCID-r1q4-2dq2-33ca

vulnerability	VCID-ry9y-z4e4-yfdh

vulnerability	VCID-vgtp-sjtt-73e9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@2.4.16-1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/cups@1.3.8-1%2Blenny10

purl pkg:deb/debian/cups@1.3.8-1%2Blenny10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2chf-23mc-d3dn

vulnerability	VCID-2weh-q66p-8bdg

vulnerability	VCID-35gf-189e-3ud4

vulnerability	VCID-39f1-22a5-c7aw

vulnerability	VCID-3ame-feez-yqhc

vulnerability	VCID-3etj-2m21-ffa1

vulnerability	VCID-44ju-8618-vqht

vulnerability	VCID-48ht-j7ga-9ugq

vulnerability	VCID-4bxg-5tnm-y3hw

vulnerability	VCID-4he8-q3nc-3bf7

vulnerability	VCID-6mus-21kz-uuhz

vulnerability	VCID-7gbc-682w-5fdq

vulnerability	VCID-7wg4-sc9v-bffk

vulnerability	VCID-843p-8xve-nfer

vulnerability	VCID-8yv6-g189-vugt

vulnerability	VCID-993k-m3sq-gufu

vulnerability	VCID-am36-6m5v-fkba

vulnerability	VCID-anr5-gc12-e7dr

vulnerability	VCID-apyh-1uza-pffa

vulnerability	VCID-aznw-8yer-xfhf

vulnerability	VCID-bj8b-t1mc-zfd3

vulnerability	VCID-bzht-vhe3-y7bf

vulnerability	VCID-cf81-58ju-bqaz

vulnerability	VCID-ed99-uccv-d7bh

vulnerability	VCID-ev9c-v5dv-37fb

vulnerability	VCID-fby6-8f6z-63fw

vulnerability	VCID-fkyp-m1p9-mfhy

vulnerability	VCID-fpbv-zqer-w7c3

vulnerability	VCID-g2x8-pm39-sfer

vulnerability	VCID-k4yw-jg6v-1bcc

vulnerability	VCID-mcmb-bvw9-dba5

vulnerability	VCID-mp2s-4x2a-h7fq

vulnerability	VCID-mtwe-dgnd-c3fj

vulnerability	VCID-mtzd-538p-kbhm

vulnerability	VCID-p8gy-dd3u-uqh4

vulnerability	VCID-pwkd-sgtt-1bef

vulnerability	VCID-q8a8-fd7r-1kg7

vulnerability	VCID-qjzr-avt1-fyfd

vulnerability	VCID-qxwq-vp9g-ukca

vulnerability	VCID-ucmb-we3r-aqcd

vulnerability	VCID-ukec-69r2-xbef

vulnerability	VCID-uqp7-5pb9-w7cg

vulnerability	VCID-ur43-jbhj-k7bk

vulnerability	VCID-vmjh-9kbz-qkh6

vulnerability	VCID-vx54-r2dt-8ue5

vulnerability	VCID-w17y-dvuq-7ba6

vulnerability	VCID-wjht-u5u1-kkas

vulnerability	VCID-wqu4-wys6-hfbb

vulnerability	VCID-xp1f-4p3v-67ad

vulnerability	VCID-y7a9-2p1n-z7fx

vulnerability	VCID-yyrd-qt22-w3f5

vulnerability	VCID-zjj3-g2d7-c3gd

vulnerability	VCID-zm2g-nduw-tfcy

vulnerability	VCID-zt43-htwu-kfde

vulnerability	VCID-zxp7-6d69-tfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/cups@1.3.8-1%252Blenny10

url pkg:rpm/redhat/cups@1:1.2.4-11.18.el5_2?arch=3

purl pkg:rpm/redhat/cups@1:1.2.4-11.18.el5_2?arch=3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8yv6-g189-vugt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cups@1:1.2.4-11.18.el5_2%3Farch=3

References

reference_url	http://lab.gnucitizen.org/projects/cups-0day
reference_id
reference_type
scores
url	http://lab.gnucitizen.org/projects/cups-0day

reference_url	http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5183.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5183.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-5183

reference_id

reference_type

scores

value	0.04639
scoring_system	epss
scoring_elements	0.89302
published_at	2026-04-18T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.89303
published_at	2026-04-16T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.89242
published_at	2026-04-01T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.89248
published_at	2026-04-02T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.89263
published_at	2026-04-04T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.89265
published_at	2026-04-07T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.89283
published_at	2026-04-08T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.89287
published_at	2026-04-09T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.89296
published_at	2026-04-11T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.89293
published_at	2026-04-12T12:55:00Z

value	0.04639
scoring_system	epss
scoring_elements	0.8929
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-5183

reference_url	https://bugs.launchpad.net/ubuntu/+source/cups/+bug/298241
reference_id
reference_type
scores
url	https://bugs.launchpad.net/ubuntu/+source/cups/+bug/298241

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5183

reference_url	http://secunia.com/advisories/33937
reference_id
reference_type
scores
url	http://secunia.com/advisories/33937

reference_url	http://secunia.com/advisories/43521
reference_id
reference_type
scores
url	http://secunia.com/advisories/43521

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/46684
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/46684

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10586
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10586

reference_url	http://support.apple.com/kb/HT3438
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT3438

reference_url	https://www.exploit-db.com/exploits/7150
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/7150

reference_url	http://www.debian.org/security/2011/dsa-2176
reference_id
reference_type
scores
url	http://www.debian.org/security/2011/dsa-2176

reference_url	http://www.gnucitizen.org/blog/pwning-ubuntu-via-cups/
reference_id
reference_type
scores
url	http://www.gnucitizen.org/blog/pwning-ubuntu-via-cups/

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2009:028
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2009:028

reference_url	http://www.openwall.com/lists/oss-security/2008/11/19/3
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2008/11/19/3

reference_url	http://www.openwall.com/lists/oss-security/2008/11/19/4
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2008/11/19/4

reference_url	http://www.openwall.com/lists/oss-security/2008/11/20/1
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2008/11/20/1

reference_url	http://www.redhat.com/support/errata/RHSA-2008-1029.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2008-1029.html

reference_url	http://www.securityfocus.com/bid/32419
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/32419

reference_url	http://www.securitytracker.com/id?1021396
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1021396

reference_url	http://www.vupen.com/english/advisories/2009/0422
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/0422

reference_url	http://www.vupen.com/english/advisories/2011/0535
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0535

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=473901
reference_id	473901
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=473901

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506180
reference_id	506180
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506180

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:cups::::::::
reference_id	cpe:2.3:a:apple:cups::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:cups::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x::::::::
reference_id	cpe:2.3:o:apple:mac_os_x::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server::::::::
reference_id	cpe:2.3:o:apple:mac_os_x_server::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:6.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.0:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-5183

reference_id

CVE-2008-5183

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2008-5183

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/7150.html
reference_id	OSVDB-50351;CVE-2008-5183
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/7150.html

reference_url	https://access.redhat.com/errata/RHSA-2008:1029
reference_id	RHSA-2008:1029
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:1029

reference_url	https://usn.ubuntu.com/707-1/
reference_id	USN-707-1
reference_type
scores
url	https://usn.ubuntu.com/707-1/

Weaknesses

cwe_id	476
name	NULL Pointer Dereference
description	A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

Exploits

date_added	2008-11-17
description	CUPS 1.3.7 - Cross-Site Request Forgery (Add RSS Subscription) Remote Crash
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`true`
source_date_published	2008-11-18
exploit_type	dos
platform	linux
source_date_updated	`null`
data_source	Exploit-DB
source_url

Severity_range_score 4.3 - 7.5

Exploitability 2.0

Weighted_severity 6.8

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8yv6-g189-vugt

Vulnerability Instance