Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-rnzv-mnjr-rfby
Summary7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of 7-Zip. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the processing of streams. The issue results from a logic error that can lead to an infinite loop. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-24307.
Aliases
0
alias CVE-2024-11612
Fixed_packages
0
url pkg:deb/debian/7zip@24.08%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/7zip@24.08%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/7zip@24.08%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/7zip@25.01%2Bdfsg-1~deb13u1~bpo12%2B1
purl pkg:deb/debian/7zip@25.01%2Bdfsg-1~deb13u1~bpo12%2B1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/7zip@25.01%252Bdfsg-1~deb13u1~bpo12%252B1
2
url pkg:deb/debian/7zip@25.01%2Bdfsg-1~deb13u1?distro=trixie
purl pkg:deb/debian/7zip@25.01%2Bdfsg-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/7zip@25.01%252Bdfsg-1~deb13u1%3Fdistro=trixie
3
url pkg:deb/debian/7zip@26.00%2Bdfsg1-2?distro=trixie
purl pkg:deb/debian/7zip@26.00%2Bdfsg1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/7zip@26.00%252Bdfsg1-2%3Fdistro=trixie
4
url pkg:deb/debian/7zip@26.00%2Bdfsg1-3?distro=trixie
purl pkg:deb/debian/7zip@26.00%2Bdfsg1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/7zip@26.00%252Bdfsg1-3%3Fdistro=trixie
5
url pkg:deb/debian/p7zip@16.02%2Btransitional.1?distro=trixie
purl pkg:deb/debian/p7zip@16.02%2Btransitional.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/p7zip@16.02%252Btransitional.1%3Fdistro=trixie
6
url pkg:deb/debian/p7zip@16.02%2Btransitional.1
purl pkg:deb/debian/p7zip@16.02%2Btransitional.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/p7zip@16.02%252Btransitional.1
Affected_packages
0
url pkg:deb/debian/7zip@22.01%2Bdfsg-8%2Bdeb12u1
purl pkg:deb/debian/7zip@22.01%2Bdfsg-8%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6qgu-7h5h-1bed
1
vulnerability VCID-6xnz-5ctc-fkbk
2
vulnerability VCID-ne48-dtxr-2ybq
3
vulnerability VCID-pgke-8ce4-uybu
4
vulnerability VCID-q99c-7ggg-wyep
5
vulnerability VCID-rnzv-mnjr-rfby
6
vulnerability VCID-ymuu-t8yt-4kbk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/7zip@22.01%252Bdfsg-8%252Bdeb12u1
1
url pkg:deb/debian/7zip@22.01%2Bdfsg-8%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/7zip@22.01%2Bdfsg-8%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6qgu-7h5h-1bed
1
vulnerability VCID-6xnz-5ctc-fkbk
2
vulnerability VCID-ne48-dtxr-2ybq
3
vulnerability VCID-pgke-8ce4-uybu
4
vulnerability VCID-q99c-7ggg-wyep
5
vulnerability VCID-rnzv-mnjr-rfby
6
vulnerability VCID-ymuu-t8yt-4kbk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/7zip@22.01%252Bdfsg-8%252Bdeb12u1%3Fdistro=trixie
2
url pkg:deb/debian/p7zip@16.02%2Bdfsg-8
purl pkg:deb/debian/p7zip@16.02%2Bdfsg-8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6qgu-7h5h-1bed
1
vulnerability VCID-6xnz-5ctc-fkbk
2
vulnerability VCID-hgkj-wq8u-q3eh
3
vulnerability VCID-mjeh-zkd6-1kaj
4
vulnerability VCID-ne48-dtxr-2ybq
5
vulnerability VCID-pgke-8ce4-uybu
6
vulnerability VCID-pj98-u4mm-r7cw
7
vulnerability VCID-q99c-7ggg-wyep
8
vulnerability VCID-rnzv-mnjr-rfby
9
vulnerability VCID-uebs-8u4d-3bd1
10
vulnerability VCID-xrbx-dps5-ekfe
11
vulnerability VCID-ymuu-t8yt-4kbk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/p7zip@16.02%252Bdfsg-8
3
url pkg:deb/debian/p7zip@16.02%2Bdfsg-8?distro=trixie
purl pkg:deb/debian/p7zip@16.02%2Bdfsg-8?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6qgu-7h5h-1bed
1
vulnerability VCID-6xnz-5ctc-fkbk
2
vulnerability VCID-hgkj-wq8u-q3eh
3
vulnerability VCID-mjeh-zkd6-1kaj
4
vulnerability VCID-ne48-dtxr-2ybq
5
vulnerability VCID-pgke-8ce4-uybu
6
vulnerability VCID-pj98-u4mm-r7cw
7
vulnerability VCID-q99c-7ggg-wyep
8
vulnerability VCID-rnzv-mnjr-rfby
9
vulnerability VCID-uebs-8u4d-3bd1
10
vulnerability VCID-xrbx-dps5-ekfe
11
vulnerability VCID-ymuu-t8yt-4kbk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/p7zip@16.02%252Bdfsg-8%3Fdistro=trixie
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-11612
reference_id
reference_type
scores
0
value 0.00171
scoring_system epss
scoring_elements 0.38308
published_at 2026-04-21T12:55:00Z
1
value 0.00171
scoring_system epss
scoring_elements 0.38344
published_at 2026-04-13T12:55:00Z
2
value 0.00171
scoring_system epss
scoring_elements 0.38391
published_at 2026-04-16T12:55:00Z
3
value 0.00171
scoring_system epss
scoring_elements 0.38371
published_at 2026-04-18T12:55:00Z
4
value 0.00171
scoring_system epss
scoring_elements 0.38442
published_at 2026-04-02T12:55:00Z
5
value 0.00171
scoring_system epss
scoring_elements 0.38466
published_at 2026-04-04T12:55:00Z
6
value 0.00171
scoring_system epss
scoring_elements 0.38331
published_at 2026-04-07T12:55:00Z
7
value 0.00171
scoring_system epss
scoring_elements 0.38381
published_at 2026-04-08T12:55:00Z
8
value 0.00171
scoring_system epss
scoring_elements 0.38389
published_at 2026-04-09T12:55:00Z
9
value 0.00171
scoring_system epss
scoring_elements 0.38406
published_at 2026-04-11T12:55:00Z
10
value 0.00171
scoring_system epss
scoring_elements 0.38368
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-11612
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11612
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11612
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://www.zerodayinitiative.com/advisories/ZDI-24-1606/
reference_id ZDI-24-1606
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-26T15:12:13Z/
url https://www.zerodayinitiative.com/advisories/ZDI-24-1606/
Weaknesses
0
cwe_id 835
name Loop with Unreachable Exit Condition ('Infinite Loop')
description The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
Exploits
Severity_range_score6.5 - 6.5
Exploitability0.5
Weighted_severity3.9
Risk_score1.9
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-rnzv-mnjr-rfby