Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-up8e-3hxu-73ah
Summarywpa_supplicant: wpa_supplicant loading arbitrary shared objects allowing privilege escalation
Aliases
0
alias CVE-2024-5290
Fixed_packages
0
url pkg:deb/debian/wpa@2:2.9.0-21%2Bdeb11u2
purl pkg:deb/debian/wpa@2:2.9.0-21%2Bdeb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1eva-m1zn-dbbs
1
vulnerability VCID-57qp-9n3e-g7g7
2
vulnerability VCID-6jb3-mw38-gqaf
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.9.0-21%252Bdeb11u2
1
url pkg:deb/debian/wpa@2:2.9.0-21%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/wpa@2:2.9.0-21%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.9.0-21%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/wpa@2:2.10-12%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/wpa@2:2.10-12%2Bdeb12u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.10-12%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/wpa@2:2.10-12%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/wpa@2:2.10-12%2Bdeb12u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.10-12%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/wpa@2:2.10-22?distro=trixie
purl pkg:deb/debian/wpa@2:2.10-22?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.10-22%3Fdistro=trixie
5
url pkg:deb/debian/wpa@2:2.10-24?distro=trixie
purl pkg:deb/debian/wpa@2:2.10-24?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.10-24%3Fdistro=trixie
6
url pkg:deb/debian/wpa@2:2.10-25?distro=trixie
purl pkg:deb/debian/wpa@2:2.10-25?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.10-25%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/wpa@1.0-3%2Bdeb7u3
purl pkg:deb/debian/wpa@1.0-3%2Bdeb7u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1ba4-zp3t-j7b7
1
vulnerability VCID-1eva-m1zn-dbbs
2
vulnerability VCID-2pae-t1zg-d7dy
3
vulnerability VCID-2u68-nqzd-pqcu
4
vulnerability VCID-57qp-9n3e-g7g7
5
vulnerability VCID-5uqd-9srx-buhb
6
vulnerability VCID-64pb-r9pk-3bfk
7
vulnerability VCID-6jb3-mw38-gqaf
8
vulnerability VCID-7fuh-9z2r-ekee
9
vulnerability VCID-7kes-xst7-z3d3
10
vulnerability VCID-7q6k-mpk6-t7bv
11
vulnerability VCID-7y9t-7akx-afg7
12
vulnerability VCID-84gv-j3vy-kbhp
13
vulnerability VCID-8d56-3k4a-c7hy
14
vulnerability VCID-awmy-cpam-xqah
15
vulnerability VCID-b8k9-3pnn-ekgs
16
vulnerability VCID-bugv-6pzr-tuhy
17
vulnerability VCID-c1uc-msuh-bbgq
18
vulnerability VCID-c6rb-kwrq-uubn
19
vulnerability VCID-cmpu-sjnc-qyc9
20
vulnerability VCID-d17v-v7yt-5kb3
21
vulnerability VCID-dc5z-thyu-sqhb
22
vulnerability VCID-dvkq-285n-9kaw
23
vulnerability VCID-edpz-qhd8-jfez
24
vulnerability VCID-fwsj-n5rh-53h1
25
vulnerability VCID-hxn4-6y6j-83cz
26
vulnerability VCID-kj7b-sur9-hfhb
27
vulnerability VCID-kyvg-q58s-cfff
28
vulnerability VCID-m6c2-crap-b3b7
29
vulnerability VCID-mwc1-rpqz-uqcj
30
vulnerability VCID-n7rh-f4mj-jbdq
31
vulnerability VCID-p4b2-1g26-nkd2
32
vulnerability VCID-p6m7-m2w8-uybh
33
vulnerability VCID-qv3p-mcnx-gfh9
34
vulnerability VCID-s7gm-17ms-53fd
35
vulnerability VCID-s91q-7xur-gudp
36
vulnerability VCID-sz7g-jw53-yyf1
37
vulnerability VCID-ttwt-unqp-mbec
38
vulnerability VCID-up8e-3hxu-73ah
39
vulnerability VCID-uyg6-fyc7-fqf5
40
vulnerability VCID-vgs9-juev-53d2
41
vulnerability VCID-w1t7-99j6-ducn
42
vulnerability VCID-w27s-tf26-t7fb
43
vulnerability VCID-yj2a-e823-nyfw
44
vulnerability VCID-yv7z-2x73-xygy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@1.0-3%252Bdeb7u3
1
url pkg:deb/debian/wpa@2.3-1
purl pkg:deb/debian/wpa@2.3-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1ba4-zp3t-j7b7
1
vulnerability VCID-1eva-m1zn-dbbs
2
vulnerability VCID-2pae-t1zg-d7dy
3
vulnerability VCID-2u68-nqzd-pqcu
4
vulnerability VCID-57qp-9n3e-g7g7
5
vulnerability VCID-5uqd-9srx-buhb
6
vulnerability VCID-64pb-r9pk-3bfk
7
vulnerability VCID-6jb3-mw38-gqaf
8
vulnerability VCID-7fuh-9z2r-ekee
9
vulnerability VCID-7kes-xst7-z3d3
10
vulnerability VCID-7q6k-mpk6-t7bv
11
vulnerability VCID-7y9t-7akx-afg7
12
vulnerability VCID-84gv-j3vy-kbhp
13
vulnerability VCID-8d56-3k4a-c7hy
14
vulnerability VCID-awmy-cpam-xqah
15
vulnerability VCID-b8k9-3pnn-ekgs
16
vulnerability VCID-bugv-6pzr-tuhy
17
vulnerability VCID-c1uc-msuh-bbgq
18
vulnerability VCID-c6rb-kwrq-uubn
19
vulnerability VCID-cmpu-sjnc-qyc9
20
vulnerability VCID-d17v-v7yt-5kb3
21
vulnerability VCID-dc5z-thyu-sqhb
22
vulnerability VCID-dvkq-285n-9kaw
23
vulnerability VCID-edpz-qhd8-jfez
24
vulnerability VCID-fwsj-n5rh-53h1
25
vulnerability VCID-hxn4-6y6j-83cz
26
vulnerability VCID-kj7b-sur9-hfhb
27
vulnerability VCID-kyvg-q58s-cfff
28
vulnerability VCID-m6c2-crap-b3b7
29
vulnerability VCID-mwc1-rpqz-uqcj
30
vulnerability VCID-n7rh-f4mj-jbdq
31
vulnerability VCID-p4b2-1g26-nkd2
32
vulnerability VCID-p6m7-m2w8-uybh
33
vulnerability VCID-qv3p-mcnx-gfh9
34
vulnerability VCID-s7gm-17ms-53fd
35
vulnerability VCID-s91q-7xur-gudp
36
vulnerability VCID-sz7g-jw53-yyf1
37
vulnerability VCID-up8e-3hxu-73ah
38
vulnerability VCID-uyg6-fyc7-fqf5
39
vulnerability VCID-vgs9-juev-53d2
40
vulnerability VCID-w1t7-99j6-ducn
41
vulnerability VCID-w27s-tf26-t7fb
42
vulnerability VCID-yj2a-e823-nyfw
43
vulnerability VCID-yv7z-2x73-xygy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2.3-1
2
url pkg:deb/debian/wpa@2.3-1%2Bdeb8u5
purl pkg:deb/debian/wpa@2.3-1%2Bdeb8u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1ba4-zp3t-j7b7
1
vulnerability VCID-1eva-m1zn-dbbs
2
vulnerability VCID-2pae-t1zg-d7dy
3
vulnerability VCID-2u68-nqzd-pqcu
4
vulnerability VCID-57qp-9n3e-g7g7
5
vulnerability VCID-5uqd-9srx-buhb
6
vulnerability VCID-64pb-r9pk-3bfk
7
vulnerability VCID-6jb3-mw38-gqaf
8
vulnerability VCID-7fuh-9z2r-ekee
9
vulnerability VCID-7kes-xst7-z3d3
10
vulnerability VCID-7q6k-mpk6-t7bv
11
vulnerability VCID-7y9t-7akx-afg7
12
vulnerability VCID-84gv-j3vy-kbhp
13
vulnerability VCID-8d56-3k4a-c7hy
14
vulnerability VCID-awmy-cpam-xqah
15
vulnerability VCID-b8k9-3pnn-ekgs
16
vulnerability VCID-bugv-6pzr-tuhy
17
vulnerability VCID-c1uc-msuh-bbgq
18
vulnerability VCID-c6rb-kwrq-uubn
19
vulnerability VCID-cmpu-sjnc-qyc9
20
vulnerability VCID-d17v-v7yt-5kb3
21
vulnerability VCID-dc5z-thyu-sqhb
22
vulnerability VCID-dvkq-285n-9kaw
23
vulnerability VCID-edpz-qhd8-jfez
24
vulnerability VCID-fwsj-n5rh-53h1
25
vulnerability VCID-hxn4-6y6j-83cz
26
vulnerability VCID-kj7b-sur9-hfhb
27
vulnerability VCID-kyvg-q58s-cfff
28
vulnerability VCID-m6c2-crap-b3b7
29
vulnerability VCID-mwc1-rpqz-uqcj
30
vulnerability VCID-n7rh-f4mj-jbdq
31
vulnerability VCID-p4b2-1g26-nkd2
32
vulnerability VCID-p6m7-m2w8-uybh
33
vulnerability VCID-qv3p-mcnx-gfh9
34
vulnerability VCID-s7gm-17ms-53fd
35
vulnerability VCID-s91q-7xur-gudp
36
vulnerability VCID-sz7g-jw53-yyf1
37
vulnerability VCID-up8e-3hxu-73ah
38
vulnerability VCID-uyg6-fyc7-fqf5
39
vulnerability VCID-vgs9-juev-53d2
40
vulnerability VCID-w1t7-99j6-ducn
41
vulnerability VCID-w27s-tf26-t7fb
42
vulnerability VCID-yj2a-e823-nyfw
43
vulnerability VCID-yv7z-2x73-xygy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2.3-1%252Bdeb8u5
3
url pkg:deb/debian/wpa@2:2.4-1%2Bdeb9u6
purl pkg:deb/debian/wpa@2:2.4-1%2Bdeb9u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1ba4-zp3t-j7b7
1
vulnerability VCID-1eva-m1zn-dbbs
2
vulnerability VCID-2pae-t1zg-d7dy
3
vulnerability VCID-57qp-9n3e-g7g7
4
vulnerability VCID-5uqd-9srx-buhb
5
vulnerability VCID-64pb-r9pk-3bfk
6
vulnerability VCID-6jb3-mw38-gqaf
7
vulnerability VCID-7fuh-9z2r-ekee
8
vulnerability VCID-7kes-xst7-z3d3
9
vulnerability VCID-7q6k-mpk6-t7bv
10
vulnerability VCID-84gv-j3vy-kbhp
11
vulnerability VCID-awmy-cpam-xqah
12
vulnerability VCID-b8k9-3pnn-ekgs
13
vulnerability VCID-c6rb-kwrq-uubn
14
vulnerability VCID-cmpu-sjnc-qyc9
15
vulnerability VCID-d17v-v7yt-5kb3
16
vulnerability VCID-dc5z-thyu-sqhb
17
vulnerability VCID-kj7b-sur9-hfhb
18
vulnerability VCID-m6c2-crap-b3b7
19
vulnerability VCID-n7rh-f4mj-jbdq
20
vulnerability VCID-p4b2-1g26-nkd2
21
vulnerability VCID-p6m7-m2w8-uybh
22
vulnerability VCID-s91q-7xur-gudp
23
vulnerability VCID-sz7g-jw53-yyf1
24
vulnerability VCID-up8e-3hxu-73ah
25
vulnerability VCID-vgs9-juev-53d2
26
vulnerability VCID-w1t7-99j6-ducn
27
vulnerability VCID-w27s-tf26-t7fb
28
vulnerability VCID-yj2a-e823-nyfw
29
vulnerability VCID-yv7z-2x73-xygy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.4-1%252Bdeb9u6
4
url pkg:deb/debian/wpa@2:2.7%2Bgit20190128%2B0c1e29f-6%2Bdeb10u3
purl pkg:deb/debian/wpa@2:2.7%2Bgit20190128%2B0c1e29f-6%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1eva-m1zn-dbbs
1
vulnerability VCID-57qp-9n3e-g7g7
2
vulnerability VCID-5uqd-9srx-buhb
3
vulnerability VCID-64pb-r9pk-3bfk
4
vulnerability VCID-6jb3-mw38-gqaf
5
vulnerability VCID-7fuh-9z2r-ekee
6
vulnerability VCID-c6rb-kwrq-uubn
7
vulnerability VCID-kj7b-sur9-hfhb
8
vulnerability VCID-p4b2-1g26-nkd2
9
vulnerability VCID-up8e-3hxu-73ah
10
vulnerability VCID-w27s-tf26-t7fb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wpa@2:2.7%252Bgit20190128%252B0c1e29f-6%252Bdeb10u3
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5290.json
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5290.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-5290
reference_id
reference_type
scores
0
value 0.00306
scoring_system epss
scoring_elements 0.54157
published_at 2026-06-07T12:55:00Z
1
value 0.00306
scoring_system epss
scoring_elements 0.54159
published_at 2026-06-05T12:55:00Z
2
value 0.00306
scoring_system epss
scoring_elements 0.54167
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-5290
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5290
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5290
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.launchpad.net/ubuntu/+source/wpa/+bug/2067613
reference_id 2067613
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-09-18T15:37:32Z/
url https://bugs.launchpad.net/ubuntu/+source/wpa/+bug/2067613
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2303402
reference_id 2303402
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2303402
6
reference_url https://snyk.io/blog/abusing-ubuntu-root-privilege-escalation/
reference_id abusing-ubuntu-root-privilege-escalation
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-09-18T15:37:32Z/
url https://snyk.io/blog/abusing-ubuntu-root-privilege-escalation/
7
reference_url https://ubuntu.com/security/notices/USN-6945-1
reference_id USN-6945-1
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-09-18T15:37:32Z/
url https://ubuntu.com/security/notices/USN-6945-1
8
reference_url https://usn.ubuntu.com/6945-1/
reference_id USN-6945-1
reference_type
scores
url https://usn.ubuntu.com/6945-1/
Weaknesses
0
cwe_id 427
name Uncontrolled Search Path Element
description The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
Exploits
Severity_range_score6.4 - 8.8
Exploitability0.5
Weighted_severity7.9
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-up8e-3hxu-73ah