Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-ne6v-9jzf-m7hg
Summarybeep version 1.3 and up contains a External Control of File Name or Path vulnerability in --device option that can result in Local unprivileged user can inhibit execution of arbitrary programs by other users, allowing DoS. This attack appear to be exploitable via The system must allow local users to run beep.
Aliases
0
alias CVE-2018-1000532
Fixed_packages
0
url pkg:deb/debian/beep@1.4.3-1?distro=trixie
purl pkg:deb/debian/beep@1.4.3-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.4.3-1%3Fdistro=trixie
1
url pkg:deb/debian/beep@1.4.3-2
purl pkg:deb/debian/beep@1.4.3-2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.4.3-2
2
url pkg:deb/debian/beep@1.4.9-1?distro=trixie
purl pkg:deb/debian/beep@1.4.9-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.4.9-1%3Fdistro=trixie
3
url pkg:deb/debian/beep@1.4.9-1.1?distro=trixie
purl pkg:deb/debian/beep@1.4.9-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.4.9-1.1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/beep@1.2.2-2.woody1
purl pkg:deb/debian/beep@1.2.2-2.woody1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gupx-n3wg-mygd
1
vulnerability VCID-ne6v-9jzf-m7hg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.2.2-2.woody1
1
url pkg:deb/debian/beep@1.2.2-15
purl pkg:deb/debian/beep@1.2.2-15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gupx-n3wg-mygd
1
vulnerability VCID-ne6v-9jzf-m7hg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.2.2-15
2
url pkg:deb/debian/beep@1.2.2-19
purl pkg:deb/debian/beep@1.2.2-19
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gupx-n3wg-mygd
1
vulnerability VCID-ne6v-9jzf-m7hg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.2.2-19
3
url pkg:deb/debian/beep@1.2.2-22
purl pkg:deb/debian/beep@1.2.2-22
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gupx-n3wg-mygd
1
vulnerability VCID-ne6v-9jzf-m7hg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.2.2-22
4
url pkg:deb/debian/beep@1.2.2-24
purl pkg:deb/debian/beep@1.2.2-24
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gupx-n3wg-mygd
1
vulnerability VCID-ne6v-9jzf-m7hg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.2.2-24
5
url pkg:deb/debian/beep@1.3-3
purl pkg:deb/debian/beep@1.3-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gupx-n3wg-mygd
1
vulnerability VCID-ne6v-9jzf-m7hg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.3-3
6
url pkg:deb/debian/beep@1.3-3%2Bdeb8u1
purl pkg:deb/debian/beep@1.3-3%2Bdeb8u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gupx-n3wg-mygd
1
vulnerability VCID-ne6v-9jzf-m7hg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.3-3%252Bdeb8u1
7
url pkg:deb/debian/beep@1.3-4%2Bdeb9u1
purl pkg:deb/debian/beep@1.3-4%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gupx-n3wg-mygd
1
vulnerability VCID-ne6v-9jzf-m7hg
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/beep@1.3-4%252Bdeb9u1
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-1000532
reference_id
reference_type
scores
0
value 0.00126
scoring_system epss
scoring_elements 0.31919
published_at 2026-04-13T12:55:00Z
1
value 0.00126
scoring_system epss
scoring_elements 0.31953
published_at 2026-04-16T12:55:00Z
2
value 0.00126
scoring_system epss
scoring_elements 0.31917
published_at 2026-04-01T12:55:00Z
3
value 0.00126
scoring_system epss
scoring_elements 0.32045
published_at 2026-04-02T12:55:00Z
4
value 0.00126
scoring_system epss
scoring_elements 0.32085
published_at 2026-04-04T12:55:00Z
5
value 0.00126
scoring_system epss
scoring_elements 0.31908
published_at 2026-04-07T12:55:00Z
6
value 0.00126
scoring_system epss
scoring_elements 0.3196
published_at 2026-04-08T12:55:00Z
7
value 0.00126
scoring_system epss
scoring_elements 0.31989
published_at 2026-04-09T12:55:00Z
8
value 0.00126
scoring_system epss
scoring_elements 0.31992
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-1000532
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000532
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000532
2
reference_url https://github.com/johnath/beep/issues/11#issuecomment-379514298
reference_id
reference_type
scores
url https://github.com/johnath/beep/issues/11#issuecomment-379514298
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902722
reference_id 902722
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902722
4
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:beep_project:beep:1.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:beep_project:beep:1.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:beep_project:beep:1.3:*:*:*:*:*:*:*
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-1000532
reference_id CVE-2018-1000532
reference_type
scores
0
value 1.9
scoring_system cvssv2
scoring_elements AV:L/AC:M/Au:N/C:N/I:N/A:P
1
value 4.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2018-1000532
Weaknesses
0
cwe_id 22
name Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
description The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Exploits
Severity_range_score1.9 - 4.7
Exploitability0.5
Weighted_severity4.2
Risk_score2.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-ne6v-9jzf-m7hg