Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-tytb-xy56-kffn
SummaryPrior to Spark 2.3.3, in certain situations Spark would write user data to local disk unencrypted, even if spark.io.encryption.enabled=true. This includes cached blocks that are fetched to disk (controlled by spark.maxRemoteBlockSizeFetchToMem); in SparkR, using parallelize; in Pyspark, using broadcast and parallelize; and use of python udfs.
Aliases
0
alias PYSEC-2019-44
Fixed_packages
0
url pkg:pypi/pyspark@2.3.3
purl pkg:pypi/pyspark@2.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-hfnr-s2a7-bkbv
5
vulnerability VCID-v1xx-eddq-aqcu
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.3.3
Affected_packages
0
url pkg:pypi/pyspark@2.1.1
purl pkg:pypi/pyspark@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-6he5-ksrc-8kck
4
vulnerability VCID-aehs-6sa9-a3es
5
vulnerability VCID-h81x-x7wm-fqgx
6
vulnerability VCID-hfnr-s2a7-bkbv
7
vulnerability VCID-tytb-xy56-kffn
8
vulnerability VCID-v1xx-eddq-aqcu
9
vulnerability VCID-vqmm-ru8x-ukcx
10
vulnerability VCID-y6p4-rd9t-cqad
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.1.1
1
url pkg:pypi/pyspark@2.1.2
purl pkg:pypi/pyspark@2.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-h81x-x7wm-fqgx
5
vulnerability VCID-hfnr-s2a7-bkbv
6
vulnerability VCID-tytb-xy56-kffn
7
vulnerability VCID-v1xx-eddq-aqcu
8
vulnerability VCID-vqmm-ru8x-ukcx
9
vulnerability VCID-y6p4-rd9t-cqad
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.1.2
2
url pkg:pypi/pyspark@2.1.3
purl pkg:pypi/pyspark@2.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-h81x-x7wm-fqgx
5
vulnerability VCID-hfnr-s2a7-bkbv
6
vulnerability VCID-tytb-xy56-kffn
7
vulnerability VCID-v1xx-eddq-aqcu
8
vulnerability VCID-vqmm-ru8x-ukcx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.1.3
3
url pkg:pypi/pyspark@2.2.0
purl pkg:pypi/pyspark@2.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-h81x-x7wm-fqgx
5
vulnerability VCID-hfnr-s2a7-bkbv
6
vulnerability VCID-tytb-xy56-kffn
7
vulnerability VCID-v1xx-eddq-aqcu
8
vulnerability VCID-vqmm-ru8x-ukcx
9
vulnerability VCID-y6p4-rd9t-cqad
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.2.0
4
url pkg:pypi/pyspark@2.2.1
purl pkg:pypi/pyspark@2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-h81x-x7wm-fqgx
5
vulnerability VCID-hfnr-s2a7-bkbv
6
vulnerability VCID-tytb-xy56-kffn
7
vulnerability VCID-v1xx-eddq-aqcu
8
vulnerability VCID-vqmm-ru8x-ukcx
9
vulnerability VCID-y6p4-rd9t-cqad
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.2.1
5
url pkg:pypi/pyspark@2.2.2
purl pkg:pypi/pyspark@2.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-h81x-x7wm-fqgx
5
vulnerability VCID-hfnr-s2a7-bkbv
6
vulnerability VCID-tytb-xy56-kffn
7
vulnerability VCID-v1xx-eddq-aqcu
8
vulnerability VCID-vqmm-ru8x-ukcx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.2.2
6
url pkg:pypi/pyspark@2.2.3
purl pkg:pypi/pyspark@2.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-hfnr-s2a7-bkbv
5
vulnerability VCID-tytb-xy56-kffn
6
vulnerability VCID-v1xx-eddq-aqcu
7
vulnerability VCID-vqmm-ru8x-ukcx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.2.3
7
url pkg:pypi/pyspark@2.3.0
purl pkg:pypi/pyspark@2.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-h81x-x7wm-fqgx
5
vulnerability VCID-hfnr-s2a7-bkbv
6
vulnerability VCID-tytb-xy56-kffn
7
vulnerability VCID-v1xx-eddq-aqcu
8
vulnerability VCID-vqmm-ru8x-ukcx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.3.0
8
url pkg:pypi/pyspark@2.3.1
purl pkg:pypi/pyspark@2.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-h81x-x7wm-fqgx
5
vulnerability VCID-hfnr-s2a7-bkbv
6
vulnerability VCID-tytb-xy56-kffn
7
vulnerability VCID-v1xx-eddq-aqcu
8
vulnerability VCID-vqmm-ru8x-ukcx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.3.1
9
url pkg:pypi/pyspark@2.3.2
purl pkg:pypi/pyspark@2.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hnx-b71k-mqat
1
vulnerability VCID-21dx-vph5-yuhe
2
vulnerability VCID-5uaa-p1dd-3yb3
3
vulnerability VCID-aehs-6sa9-a3es
4
vulnerability VCID-hfnr-s2a7-bkbv
5
vulnerability VCID-tytb-xy56-kffn
6
vulnerability VCID-v1xx-eddq-aqcu
7
vulnerability VCID-vqmm-ru8x-ukcx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pyspark@2.3.2
References
0
reference_url https://lists.apache.org/thread.html/c2a39c207421797f82823a8aff488dcd332d9544038307bf69a2ba9e@%3Cuser.spark.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/c2a39c207421797f82823a8aff488dcd332d9544038307bf69a2ba9e@%3Cuser.spark.apache.org%3E
1
reference_url https://lists.apache.org/thread.html/ra216b7b0dd82a2c12c2df9d6095e689eb3f3d28164e6b6587da69fae@%3Ccommits.spark.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/ra216b7b0dd82a2c12c2df9d6095e689eb3f3d28164e6b6587da69fae@%3Ccommits.spark.apache.org%3E
2
reference_url https://lists.apache.org/thread.html/rabe1d47e2bf8b8f6d9f3068c8d2679731d57fa73b3a7ed1fa82406d2@%3Cissues.spark.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/rabe1d47e2bf8b8f6d9f3068c8d2679731d57fa73b3a7ed1fa82406d2@%3Cissues.spark.apache.org%3E
Weaknesses
Exploits
Severity_range_scorenull
Exploitability0.5
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-tytb-xy56-kffn