Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-9ewn-73tt-dbbp
SummaryIn FlightGear before 2017.2.1, the FGCommand interface allows overwriting any file the user has write access to, but not with arbitrary data: only with the contents of a FlightGear flightplan (XML). A resource such as a malicious third-party aircraft could exploit this to damage files belonging to the user. Both this issue and CVE-2016-9956 are directory traversal vulnerabilities in Autopilot/route_mgr.cxx - this one exists because of an incomplete fix for CVE-2016-9956.
Aliases
0
alias CVE-2017-8921
Fixed_packages
0
url pkg:deb/debian/flightgear@1:2016.4.4%2Bdfsg-3?distro=trixie
purl pkg:deb/debian/flightgear@1:2016.4.4%2Bdfsg-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@1:2016.4.4%252Bdfsg-3%3Fdistro=trixie
1
url pkg:deb/debian/flightgear@1:2016.4.4%2Bdfsg-3%2Bdeb9u1
purl pkg:deb/debian/flightgear@1:2016.4.4%2Bdfsg-3%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7q3y-2xqq-xyeb
1
vulnerability VCID-f7c9-mtg5-73d2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@1:2016.4.4%252Bdfsg-3%252Bdeb9u1
2
url pkg:deb/debian/flightgear@1:2020.3.6%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/flightgear@1:2020.3.6%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@1:2020.3.6%252Bdfsg-1%3Fdistro=trixie
3
url pkg:deb/debian/flightgear@1:2020.3.16%2Bdfsg-1%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/flightgear@1:2020.3.16%2Bdfsg-1%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@1:2020.3.16%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie
4
url pkg:deb/debian/flightgear@1:2020.3.19%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/flightgear@1:2020.3.19%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@1:2020.3.19%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/flightgear@1:2024.1.4%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/flightgear@1:2024.1.4%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@1:2024.1.4%252Bdfsg-2%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/flightgear@0.7.9-3
purl pkg:deb/debian/flightgear@0.7.9-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7q3y-2xqq-xyeb
1
vulnerability VCID-8tcp-1jww-k3f3
2
vulnerability VCID-9ewn-73tt-dbbp
3
vulnerability VCID-f7c9-mtg5-73d2
4
vulnerability VCID-jvuk-8u9v-wyfy
5
vulnerability VCID-sgqz-rav3-fufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@0.7.9-3
1
url pkg:deb/debian/flightgear@0.9.6-1
purl pkg:deb/debian/flightgear@0.9.6-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7q3y-2xqq-xyeb
1
vulnerability VCID-8tcp-1jww-k3f3
2
vulnerability VCID-9ewn-73tt-dbbp
3
vulnerability VCID-f7c9-mtg5-73d2
4
vulnerability VCID-jvuk-8u9v-wyfy
5
vulnerability VCID-sgqz-rav3-fufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@0.9.6-1
2
url pkg:deb/debian/flightgear@0.9.10-2
purl pkg:deb/debian/flightgear@0.9.10-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7q3y-2xqq-xyeb
1
vulnerability VCID-8tcp-1jww-k3f3
2
vulnerability VCID-9ewn-73tt-dbbp
3
vulnerability VCID-f7c9-mtg5-73d2
4
vulnerability VCID-jvuk-8u9v-wyfy
5
vulnerability VCID-sgqz-rav3-fufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@0.9.10-2
3
url pkg:deb/debian/flightgear@1.0.0-3
purl pkg:deb/debian/flightgear@1.0.0-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7q3y-2xqq-xyeb
1
vulnerability VCID-8tcp-1jww-k3f3
2
vulnerability VCID-9ewn-73tt-dbbp
3
vulnerability VCID-f7c9-mtg5-73d2
4
vulnerability VCID-jvuk-8u9v-wyfy
5
vulnerability VCID-sgqz-rav3-fufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@1.0.0-3
4
url pkg:deb/debian/flightgear@1.9.1-1.1
purl pkg:deb/debian/flightgear@1.9.1-1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7q3y-2xqq-xyeb
1
vulnerability VCID-8tcp-1jww-k3f3
2
vulnerability VCID-9ewn-73tt-dbbp
3
vulnerability VCID-f7c9-mtg5-73d2
4
vulnerability VCID-jvuk-8u9v-wyfy
5
vulnerability VCID-sgqz-rav3-fufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@1.9.1-1.1
5
url pkg:deb/debian/flightgear@1.9.1-1.1%2Bdeb6u11
purl pkg:deb/debian/flightgear@1.9.1-1.1%2Bdeb6u11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7q3y-2xqq-xyeb
1
vulnerability VCID-8tcp-1jww-k3f3
2
vulnerability VCID-9ewn-73tt-dbbp
3
vulnerability VCID-f7c9-mtg5-73d2
4
vulnerability VCID-jvuk-8u9v-wyfy
5
vulnerability VCID-sgqz-rav3-fufm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@1.9.1-1.1%252Bdeb6u11
6
url pkg:deb/debian/flightgear@3.0.0-5
purl pkg:deb/debian/flightgear@3.0.0-5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7q3y-2xqq-xyeb
1
vulnerability VCID-9ewn-73tt-dbbp
2
vulnerability VCID-f7c9-mtg5-73d2
3
vulnerability VCID-jvuk-8u9v-wyfy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@3.0.0-5
7
url pkg:deb/debian/flightgear@3.0.0-5%2Bdeb8u3
purl pkg:deb/debian/flightgear@3.0.0-5%2Bdeb8u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7q3y-2xqq-xyeb
1
vulnerability VCID-9ewn-73tt-dbbp
2
vulnerability VCID-f7c9-mtg5-73d2
3
vulnerability VCID-jvuk-8u9v-wyfy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flightgear@3.0.0-5%252Bdeb8u3
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-8921
reference_id
reference_type
scores
0
value 0.00588
scoring_system epss
scoring_elements 0.69074
published_at 2026-04-01T12:55:00Z
1
value 0.00588
scoring_system epss
scoring_elements 0.6909
published_at 2026-04-02T12:55:00Z
2
value 0.00588
scoring_system epss
scoring_elements 0.69111
published_at 2026-04-04T12:55:00Z
3
value 0.00588
scoring_system epss
scoring_elements 0.69093
published_at 2026-04-07T12:55:00Z
4
value 0.00588
scoring_system epss
scoring_elements 0.69143
published_at 2026-04-08T12:55:00Z
5
value 0.00588
scoring_system epss
scoring_elements 0.69162
published_at 2026-04-09T12:55:00Z
6
value 0.00588
scoring_system epss
scoring_elements 0.69183
published_at 2026-04-11T12:55:00Z
7
value 0.00588
scoring_system epss
scoring_elements 0.69168
published_at 2026-04-12T12:55:00Z
8
value 0.00588
scoring_system epss
scoring_elements 0.69139
published_at 2026-04-13T12:55:00Z
9
value 0.00588
scoring_system epss
scoring_elements 0.69179
published_at 2026-04-16T12:55:00Z
10
value 0.00588
scoring_system epss
scoring_elements 0.69187
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-8921
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8921
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8921
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862689
reference_id 862689
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862689
Weaknesses
Exploits
Severity_range_scorenull
Exploitability0.5
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-9ewn-73tt-dbbp