Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-38yx-1h5j-4kb1
Summarypython: imageop module multiple integer overflows
Aliases
0
alias CVE-2008-4864
Fixed_packages
Affected_packages
0
url pkg:rpm/redhat/python@2.2.3-6?arch=11
purl pkg:rpm/redhat/python@2.2.3-6?arch=11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24m5-6chr-y7a8
1
vulnerability VCID-38yx-1h5j-4kb1
2
vulnerability VCID-bas7-hr7c-r7b3
3
vulnerability VCID-fpye-8fe9-m7du
4
vulnerability VCID-g65j-xhje-hkd4
5
vulnerability VCID-qh23-73q6-pubf
6
vulnerability VCID-wznk-5ze9-kucq
7
vulnerability VCID-yser-kjy9-e7ck
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.2.3-6%3Farch=11
1
url pkg:rpm/redhat/python@2.3.4-14.7.el4_8?arch=2
purl pkg:rpm/redhat/python@2.3.4-14.7.el4_8?arch=2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24m5-6chr-y7a8
1
vulnerability VCID-38yx-1h5j-4kb1
2
vulnerability VCID-b3m1-mjke-n3br
3
vulnerability VCID-bas7-hr7c-r7b3
4
vulnerability VCID-fpye-8fe9-m7du
5
vulnerability VCID-g65j-xhje-hkd4
6
vulnerability VCID-qh23-73q6-pubf
7
vulnerability VCID-wznk-5ze9-kucq
8
vulnerability VCID-yser-kjy9-e7ck
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.3.4-14.7.el4_8%3Farch=2
2
url pkg:rpm/redhat/python@2.4.3-24.el5_3?arch=6
purl pkg:rpm/redhat/python@2.4.3-24.el5_3?arch=6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24m5-6chr-y7a8
1
vulnerability VCID-38yx-1h5j-4kb1
2
vulnerability VCID-b3m1-mjke-n3br
3
vulnerability VCID-bas7-hr7c-r7b3
4
vulnerability VCID-fpye-8fe9-m7du
5
vulnerability VCID-g65j-xhje-hkd4
6
vulnerability VCID-k8aa-5wqq-73h3
7
vulnerability VCID-q7b1-n4tc-dffa
8
vulnerability VCID-qh23-73q6-pubf
9
vulnerability VCID-wznk-5ze9-kucq
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.4.3-24.el5_3%3Farch=6
References
0
reference_url http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
reference_id
reference_type
scores
url http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4864.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4864.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2008-4864
reference_id
reference_type
scores
0
value 0.10929
scoring_system epss
scoring_elements 0.93434
published_at 2026-04-24T12:55:00Z
1
value 0.10929
scoring_system epss
scoring_elements 0.93368
published_at 2026-04-01T12:55:00Z
2
value 0.10929
scoring_system epss
scoring_elements 0.93376
published_at 2026-04-02T12:55:00Z
3
value 0.10929
scoring_system epss
scoring_elements 0.93384
published_at 2026-04-07T12:55:00Z
4
value 0.10929
scoring_system epss
scoring_elements 0.93392
published_at 2026-04-08T12:55:00Z
5
value 0.10929
scoring_system epss
scoring_elements 0.93395
published_at 2026-04-09T12:55:00Z
6
value 0.10929
scoring_system epss
scoring_elements 0.93401
published_at 2026-04-13T12:55:00Z
7
value 0.10929
scoring_system epss
scoring_elements 0.934
published_at 2026-04-12T12:55:00Z
8
value 0.10929
scoring_system epss
scoring_elements 0.93419
published_at 2026-04-16T12:55:00Z
9
value 0.10929
scoring_system epss
scoring_elements 0.93424
published_at 2026-04-18T12:55:00Z
10
value 0.10929
scoring_system epss
scoring_elements 0.93431
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2008-4864
3
reference_url http://scary.beasts.org/security/CESA-2008-008.html
reference_id
reference_type
scores
url http://scary.beasts.org/security/CESA-2008-008.html
4
reference_url http://secunia.com/advisories/33937
reference_id
reference_type
scores
url http://secunia.com/advisories/33937
5
reference_url http://secunia.com/advisories/37471
reference_id
reference_type
scores
url http://secunia.com/advisories/37471
6
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/46606
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/46606
7
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10702
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10702
8
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8354
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8354
9
reference_url http://support.apple.com/kb/HT3438
reference_id
reference_type
scores
url http://support.apple.com/kb/HT3438
10
reference_url http://svn.python.org/view/python/trunk/Modules/imageop.c?rev=66689&view=diff&r1=66689&r2=66688&p1=python/trunk/Modules/imageop.c&p2=/python/trunk/Modules/imageop.c
reference_id
reference_type
scores
url http://svn.python.org/view/python/trunk/Modules/imageop.c?rev=66689&view=diff&r1=66689&r2=66688&p1=python/trunk/Modules/imageop.c&p2=/python/trunk/Modules/imageop.c
11
reference_url http://svn.python.org/view?rev=66689&view=rev
reference_id
reference_type
scores
url http://svn.python.org/view?rev=66689&view=rev
12
reference_url http://www.openwall.com/lists/oss-security/2008/10/27/2
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2008/10/27/2
13
reference_url http://www.openwall.com/lists/oss-security/2008/10/29/3
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2008/10/29/3
14
reference_url http://www.securityfocus.com/archive/1/507985/100/0/threaded
reference_id
reference_type
scores
url http://www.securityfocus.com/archive/1/507985/100/0/threaded
15
reference_url http://www.securityfocus.com/bid/31932
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/31932
16
reference_url http://www.securityfocus.com/bid/31976
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/31976
17
reference_url http://www.vmware.com/security/advisories/VMSA-2009-0016.html
reference_id
reference_type
scores
url http://www.vmware.com/security/advisories/VMSA-2009-0016.html
18
reference_url http://www.vupen.com/english/advisories/2009/3316
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2009/3316
19
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=469656
reference_id 469656
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=469656
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:python:python:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:python:python:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:python:python:*:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2008-4864
reference_id CVE-2008-4864
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2008-4864
22
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/10229.txt
reference_id CVE-2008-4864;OSVDB-50097
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/10229.txt
23
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/dos/32534.py
reference_id CVE-2008-4864;OSVDB-50097
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/dos/32534.py
24
reference_url https://www.securityfocus.com/bid/31932/info
reference_id CVE-2008-4864;OSVDB-50097
reference_type exploit
scores
url https://www.securityfocus.com/bid/31932/info
25
reference_url https://access.redhat.com/errata/RHSA-2009:1176
reference_id RHSA-2009:1176
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1176
26
reference_url https://access.redhat.com/errata/RHSA-2009:1177
reference_id RHSA-2009:1177
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1177
27
reference_url https://access.redhat.com/errata/RHSA-2009:1178
reference_id RHSA-2009:1178
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1178
28
reference_url https://usn.ubuntu.com/806-1/
reference_id USN-806-1
reference_type
scores
url https://usn.ubuntu.com/806-1/
Weaknesses
0
cwe_id 190
name Integer Overflow or Wraparound
description The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
Exploits
0
date_added 2008-10-27
description Python 2.5.2 - 'Imageop' Module Argument Validation Buffer Overflow
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2008-10-27
exploit_type dos
platform unix
source_date_updated 2014-03-26
data_source Exploit-DB
source_url https://www.securityfocus.com/bid/31932/info
Severity_range_score7.5 - 7.5
Exploitability2.0
Weighted_severity6.8
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-38yx-1h5j-4kb1