Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-569v-spq6-dbhv
SummaryThe bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory.
Aliases
0
alias CVE-2011-4089
Fixed_packages
0
url pkg:deb/debian/bzip2@1.0.6-1?distro=trixie
purl pkg:deb/debian/bzip2@1.0.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.6-1%3Fdistro=trixie
1
url pkg:deb/debian/bzip2@1.0.6-4
purl pkg:deb/debian/bzip2@1.0.6-4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n51n-m2r7-kbdy
1
vulnerability VCID-rgbz-6485-tfan
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.6-4
2
url pkg:deb/debian/bzip2@1.0.8-4?distro=trixie
purl pkg:deb/debian/bzip2@1.0.8-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.8-4%3Fdistro=trixie
3
url pkg:deb/debian/bzip2@1.0.8-5?distro=trixie
purl pkg:deb/debian/bzip2@1.0.8-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.8-5%3Fdistro=trixie
4
url pkg:deb/debian/bzip2@1.0.8-6?distro=trixie
purl pkg:deb/debian/bzip2@1.0.8-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.8-6%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/bzip2@0.1pl2-5
purl pkg:deb/debian/bzip2@0.1pl2-5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-569v-spq6-dbhv
1
vulnerability VCID-6u8f-799b-sff1
2
vulnerability VCID-azhe-cxb8-3kbb
3
vulnerability VCID-fsmc-8exe-j3f6
4
vulnerability VCID-n51n-m2r7-kbdy
5
vulnerability VCID-rgbz-6485-tfan
6
vulnerability VCID-uf6e-fsw6-bbbv
7
vulnerability VCID-x9p2-nwrm-pudk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@0.1pl2-5
1
url pkg:deb/debian/bzip2@0.9.0c-2
purl pkg:deb/debian/bzip2@0.9.0c-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-569v-spq6-dbhv
1
vulnerability VCID-6u8f-799b-sff1
2
vulnerability VCID-azhe-cxb8-3kbb
3
vulnerability VCID-fsmc-8exe-j3f6
4
vulnerability VCID-n51n-m2r7-kbdy
5
vulnerability VCID-rgbz-6485-tfan
6
vulnerability VCID-uf6e-fsw6-bbbv
7
vulnerability VCID-x9p2-nwrm-pudk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@0.9.0c-2
2
url pkg:deb/debian/bzip2@0.9.5d-2
purl pkg:deb/debian/bzip2@0.9.5d-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-569v-spq6-dbhv
1
vulnerability VCID-6u8f-799b-sff1
2
vulnerability VCID-azhe-cxb8-3kbb
3
vulnerability VCID-fsmc-8exe-j3f6
4
vulnerability VCID-n51n-m2r7-kbdy
5
vulnerability VCID-rgbz-6485-tfan
6
vulnerability VCID-uf6e-fsw6-bbbv
7
vulnerability VCID-x9p2-nwrm-pudk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@0.9.5d-2
3
url pkg:deb/debian/bzip2@1.0.2-1.woody2
purl pkg:deb/debian/bzip2@1.0.2-1.woody2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-569v-spq6-dbhv
1
vulnerability VCID-6u8f-799b-sff1
2
vulnerability VCID-azhe-cxb8-3kbb
3
vulnerability VCID-fsmc-8exe-j3f6
4
vulnerability VCID-n51n-m2r7-kbdy
5
vulnerability VCID-rgbz-6485-tfan
6
vulnerability VCID-uf6e-fsw6-bbbv
7
vulnerability VCID-x9p2-nwrm-pudk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.2-1.woody2
4
url pkg:deb/debian/bzip2@1.0.2-7
purl pkg:deb/debian/bzip2@1.0.2-7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-569v-spq6-dbhv
1
vulnerability VCID-azhe-cxb8-3kbb
2
vulnerability VCID-n51n-m2r7-kbdy
3
vulnerability VCID-rgbz-6485-tfan
4
vulnerability VCID-uf6e-fsw6-bbbv
5
vulnerability VCID-x9p2-nwrm-pudk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.2-7
5
url pkg:deb/debian/bzip2@1.0.3-6
purl pkg:deb/debian/bzip2@1.0.3-6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-569v-spq6-dbhv
1
vulnerability VCID-azhe-cxb8-3kbb
2
vulnerability VCID-n51n-m2r7-kbdy
3
vulnerability VCID-rgbz-6485-tfan
4
vulnerability VCID-x9p2-nwrm-pudk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.3-6
6
url pkg:deb/debian/bzip2@1.0.5-1%2Blenny1
purl pkg:deb/debian/bzip2@1.0.5-1%2Blenny1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-569v-spq6-dbhv
1
vulnerability VCID-azhe-cxb8-3kbb
2
vulnerability VCID-n51n-m2r7-kbdy
3
vulnerability VCID-rgbz-6485-tfan
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.5-1%252Blenny1
7
url pkg:deb/debian/bzip2@1.0.5-6%2Bsqueeze1
purl pkg:deb/debian/bzip2@1.0.5-6%2Bsqueeze1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-569v-spq6-dbhv
1
vulnerability VCID-n51n-m2r7-kbdy
2
vulnerability VCID-rgbz-6485-tfan
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bzip2@1.0.5-6%252Bsqueeze1
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4089.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4089.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-4089
reference_id
reference_type
scores
0
value 0.00152
scoring_system epss
scoring_elements 0.35722
published_at 2026-04-01T12:55:00Z
1
value 0.00152
scoring_system epss
scoring_elements 0.3592
published_at 2026-04-02T12:55:00Z
2
value 0.00152
scoring_system epss
scoring_elements 0.3595
published_at 2026-04-04T12:55:00Z
3
value 0.00152
scoring_system epss
scoring_elements 0.35781
published_at 2026-04-07T12:55:00Z
4
value 0.00152
scoring_system epss
scoring_elements 0.35831
published_at 2026-04-08T12:55:00Z
5
value 0.00152
scoring_system epss
scoring_elements 0.35854
published_at 2026-04-09T12:55:00Z
6
value 0.00152
scoring_system epss
scoring_elements 0.35861
published_at 2026-04-11T12:55:00Z
7
value 0.00152
scoring_system epss
scoring_elements 0.3582
published_at 2026-04-12T12:55:00Z
8
value 0.00152
scoring_system epss
scoring_elements 0.35797
published_at 2026-04-13T12:55:00Z
9
value 0.00152
scoring_system epss
scoring_elements 0.35836
published_at 2026-04-16T12:55:00Z
10
value 0.00152
scoring_system epss
scoring_elements 0.35824
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-4089
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4089
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4089
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=632862
reference_id 632862
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=632862
4
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18147.c
reference_id CVE-2011-4089;OSVDB-77356
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18147.c
5
reference_url https://usn.ubuntu.com/1308-1/
reference_id USN-1308-1
reference_type
scores
url https://usn.ubuntu.com/1308-1/
Weaknesses
Exploits
0
date_added 2011-11-27
description bzexe (bzip2) - Race Condition
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2011-11-23
exploit_type local
platform linux
source_date_updated 2011-11-27
data_source Exploit-DB
source_url
Severity_range_scorenull
Exploitability2.0
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-569v-spq6-dbhv