Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-8aqq-hqvu-z3g3

Summary Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).

Aliases

alias	CVE-2020-14803

Fixed_packages

url	pkg:deb/debian/openjdk-11@11.0.9%2B11-1?distro=sid
purl	pkg:deb/debian/openjdk-11@11.0.9%2B11-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-11@11.0.9%252B11-1%3Fdistro=sid

url	pkg:deb/debian/openjdk-11@11.0.24%2B8-2~deb11u1?distro=sid
purl	pkg:deb/debian/openjdk-11@11.0.24%2B8-2~deb11u1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-11@11.0.24%252B8-2~deb11u1%3Fdistro=sid

url	pkg:deb/debian/openjdk-11@11.0.31%2B11-1?distro=sid
purl	pkg:deb/debian/openjdk-11@11.0.31%2B11-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-11@11.0.31%252B11-1%3Fdistro=sid

url	pkg:deb/debian/openjdk-8@8u272-b10-1?distro=sid
purl	pkg:deb/debian/openjdk-8@8u272-b10-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-8@8u272-b10-1%3Fdistro=sid

url	pkg:deb/debian/openjdk-8@8u492-ga-1?distro=sid
purl	pkg:deb/debian/openjdk-8@8u492-ga-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-8@8u492-ga-1%3Fdistro=sid

url	pkg:ebuild/dev-java/openjdk@8.272_p10
purl	pkg:ebuild/dev-java/openjdk@8.272_p10
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/openjdk@8.272_p10

url	pkg:ebuild/dev-java/openjdk-bin@8.272_p10
purl	pkg:ebuild/dev-java/openjdk-bin@8.272_p10
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/openjdk-bin@8.272_p10

url	pkg:ebuild/dev-java/openjdk-jre-bin@8.272_p10
purl	pkg:ebuild/dev-java/openjdk-jre-bin@8.272_p10
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/openjdk-jre-bin@8.272_p10

Affected_packages

url pkg:ebuild/dev-java/icedtea@3.21.0

purl pkg:ebuild/dev-java/icedtea@3.21.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1dmq-7kkk-9ffr

vulnerability	VCID-3t92-bzzd-b3f8

vulnerability	VCID-4c3j-7pf2-fkbc

vulnerability	VCID-4sr3-ebqa-xug8

vulnerability	VCID-754t-89mm-43h2

vulnerability	VCID-86r8-k7yd-mua5

vulnerability	VCID-895e-vekz-yyag

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-8cga-w5ms-mufw

vulnerability	VCID-9awt-wevr-53d7

vulnerability	VCID-9h9j-2kzq-k3fv

vulnerability	VCID-9q99-7g57-kkg9

vulnerability	VCID-9z9j-fn2b-qkgn

vulnerability	VCID-a2vb-fgag-43ht

vulnerability	VCID-ajdd-f5y6-ykbf

vulnerability	VCID-bn6d-evcd-mfdd

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-cwky-3rmp-97b4

vulnerability	VCID-dpq1-6qrj-1ydk

vulnerability	VCID-e6dp-udwu-4bcz

vulnerability	VCID-f2f4-z1sv-fqcn

vulnerability	VCID-fd7c-w5ta-1yc1

vulnerability	VCID-fk6t-6cx2-ckh7

vulnerability	VCID-fubs-k5u5-1yf8

vulnerability	VCID-gn2w-qhhs-gfea

vulnerability	VCID-gyt8-tngh-fufb

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-qbaf-vf9e-b3gz

vulnerability	VCID-qrbh-r1s1-uqhm

vulnerability	VCID-ra3y-ftm6-zqhe

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-rxw3-h85j-37aw

vulnerability	VCID-spbd-ep4q-t3cr

vulnerability	VCID-v59b-dnzb-a7g9

vulnerability	VCID-wcyb-taz1-nkhh

vulnerability	VCID-ws2t-dv43-gkdv

vulnerability	VCID-x1kg-b1un-xkfm

vulnerability	VCID-xzgt-fz3r-tufu

vulnerability	VCID-y69k-6jjd-h3bk

vulnerability	VCID-ytpy-r3q9-qbc9

vulnerability	VCID-zsyv-sfjk-2bbw

resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/icedtea@3.21.0

url pkg:ebuild/dev-java/icedtea-bin@3.16.0-r2

purl pkg:ebuild/dev-java/icedtea-bin@3.16.0-r2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1dmq-7kkk-9ffr

vulnerability	VCID-3t92-bzzd-b3f8

vulnerability	VCID-4c3j-7pf2-fkbc

vulnerability	VCID-4sr3-ebqa-xug8

vulnerability	VCID-754t-89mm-43h2

vulnerability	VCID-86r8-k7yd-mua5

vulnerability	VCID-895e-vekz-yyag

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-8cga-w5ms-mufw

vulnerability	VCID-9awt-wevr-53d7

vulnerability	VCID-9h9j-2kzq-k3fv

vulnerability	VCID-9q99-7g57-kkg9

vulnerability	VCID-9z9j-fn2b-qkgn

vulnerability	VCID-a2vb-fgag-43ht

vulnerability	VCID-ajdd-f5y6-ykbf

vulnerability	VCID-bn6d-evcd-mfdd

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-cwky-3rmp-97b4

vulnerability	VCID-dpq1-6qrj-1ydk

vulnerability	VCID-e6dp-udwu-4bcz

vulnerability	VCID-f2f4-z1sv-fqcn

vulnerability	VCID-fd7c-w5ta-1yc1

vulnerability	VCID-fk6t-6cx2-ckh7

vulnerability	VCID-fubs-k5u5-1yf8

vulnerability	VCID-gn2w-qhhs-gfea

vulnerability	VCID-gyt8-tngh-fufb

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-qbaf-vf9e-b3gz

vulnerability	VCID-qrbh-r1s1-uqhm

vulnerability	VCID-ra3y-ftm6-zqhe

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-rxw3-h85j-37aw

vulnerability	VCID-spbd-ep4q-t3cr

vulnerability	VCID-v59b-dnzb-a7g9

vulnerability	VCID-wcyb-taz1-nkhh

vulnerability	VCID-ws2t-dv43-gkdv

vulnerability	VCID-x1kg-b1un-xkfm

vulnerability	VCID-xzgt-fz3r-tufu

vulnerability	VCID-y69k-6jjd-h3bk

vulnerability	VCID-ytpy-r3q9-qbc9

vulnerability	VCID-zsyv-sfjk-2bbw

resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/icedtea-bin@3.16.0-r2

url pkg:ebuild/dev-java/icedtea-bin@3.21.0

purl pkg:ebuild/dev-java/icedtea-bin@3.21.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1dmq-7kkk-9ffr

vulnerability	VCID-3t92-bzzd-b3f8

vulnerability	VCID-4c3j-7pf2-fkbc

vulnerability	VCID-4sr3-ebqa-xug8

vulnerability	VCID-754t-89mm-43h2

vulnerability	VCID-86r8-k7yd-mua5

vulnerability	VCID-895e-vekz-yyag

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-8cga-w5ms-mufw

vulnerability	VCID-9awt-wevr-53d7

vulnerability	VCID-9h9j-2kzq-k3fv

vulnerability	VCID-9q99-7g57-kkg9

vulnerability	VCID-9z9j-fn2b-qkgn

vulnerability	VCID-a2vb-fgag-43ht

vulnerability	VCID-ajdd-f5y6-ykbf

vulnerability	VCID-bn6d-evcd-mfdd

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-cwky-3rmp-97b4

vulnerability	VCID-dpq1-6qrj-1ydk

vulnerability	VCID-e6dp-udwu-4bcz

vulnerability	VCID-f2f4-z1sv-fqcn

vulnerability	VCID-fd7c-w5ta-1yc1

vulnerability	VCID-fk6t-6cx2-ckh7

vulnerability	VCID-fubs-k5u5-1yf8

vulnerability	VCID-gn2w-qhhs-gfea

vulnerability	VCID-gyt8-tngh-fufb

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-qbaf-vf9e-b3gz

vulnerability	VCID-qrbh-r1s1-uqhm

vulnerability	VCID-ra3y-ftm6-zqhe

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-rxw3-h85j-37aw

vulnerability	VCID-spbd-ep4q-t3cr

vulnerability	VCID-v59b-dnzb-a7g9

vulnerability	VCID-wcyb-taz1-nkhh

vulnerability	VCID-ws2t-dv43-gkdv

vulnerability	VCID-x1kg-b1un-xkfm

vulnerability	VCID-xzgt-fz3r-tufu

vulnerability	VCID-y69k-6jjd-h3bk

vulnerability	VCID-ytpy-r3q9-qbc9

vulnerability	VCID-zsyv-sfjk-2bbw

resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/icedtea-bin@3.21.0

url pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0?arch=el8_1

purl pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0?arch=el8_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-wcyb-taz1-nkhh

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0%3Farch=el8_1

url pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0?arch=el8_0

purl pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0?arch=el8_0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-wcyb-taz1-nkhh

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0%3Farch=el8_0

url pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0?arch=el8_2

purl pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0?arch=el8_2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-wcyb-taz1-nkhh

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0%3Farch=el8_2

url pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0?arch=el7_9

purl pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0?arch=el7_9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-wcyb-taz1-nkhh

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.9.11-0%3Farch=el7_9

url pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.80-1jpp.1?arch=el7

purl pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.80-1jpp.1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-qakp-xuvr-qyaj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.80-1jpp.1%3Farch=el7

url pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.25-1jpp.1?arch=el7

purl pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.25-1jpp.1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5v9z-v7yf-bbef

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-qakp-xuvr-qyaj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.25-1jpp.1%3Farch=el7

url pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.25-2?arch=el8_3

purl pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.25-2?arch=el8_3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5v9z-v7yf-bbef

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-qakp-xuvr-qyaj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.6.25-2%3Farch=el8_3

url pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-0?arch=el8_0

purl pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-0?arch=el8_0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-wcyb-taz1-nkhh

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-0%3Farch=el8_0

url pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-0?arch=el6_10

purl pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-0?arch=el6_10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-wcyb-taz1-nkhh

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-0%3Farch=el6_10

url pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-0?arch=el8_1

purl pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-0?arch=el8_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-wcyb-taz1-nkhh

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-0%3Farch=el8_1

url pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-1?arch=el8_2

purl pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-1?arch=el8_2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-wcyb-taz1-nkhh

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-1%3Farch=el8_2

url pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-1?arch=el7_9

purl pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-1?arch=el7_9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8aqq-hqvu-z3g3

vulnerability	VCID-ce4j-dm6b-pqfg

vulnerability	VCID-hba8-8876-yufu

vulnerability	VCID-k5zw-z2mr-sbfb

vulnerability	VCID-m1v2-g3pc-d3d9

vulnerability	VCID-rcby-ck9v-eqc5

vulnerability	VCID-wcyb-taz1-nkhh

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.272.b10-1%3Farch=el7_9

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14803.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14803.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14803

reference_id

reference_type

scores

value	0.00041
scoring_system	epss
scoring_elements	0.12651
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14803

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1889895
reference_id	1889895
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1889895

reference_url	https://security.gentoo.org/glsa/202101-19
reference_id	GLSA-202101-19
reference_type
scores
url	https://security.gentoo.org/glsa/202101-19

reference_url	https://security.gentoo.org/glsa/202409-26
reference_id	GLSA-202409-26
reference_type
scores
url	https://security.gentoo.org/glsa/202409-26

reference_url	https://access.redhat.com/errata/RHSA-2020:4305
reference_id	RHSA-2020:4305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4305

reference_url	https://access.redhat.com/errata/RHSA-2020:4306
reference_id	RHSA-2020:4306
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4306

reference_url	https://access.redhat.com/errata/RHSA-2020:4307
reference_id	RHSA-2020:4307
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4307

reference_url	https://access.redhat.com/errata/RHSA-2020:4316
reference_id	RHSA-2020:4316
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4316

reference_url	https://access.redhat.com/errata/RHSA-2020:4347
reference_id	RHSA-2020:4347
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4347

reference_url	https://access.redhat.com/errata/RHSA-2020:4348
reference_id	RHSA-2020:4348
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4348

reference_url	https://access.redhat.com/errata/RHSA-2020:4349
reference_id	RHSA-2020:4349
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4349

reference_url	https://access.redhat.com/errata/RHSA-2020:4350
reference_id	RHSA-2020:4350
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4350

reference_url	https://access.redhat.com/errata/RHSA-2020:4352
reference_id	RHSA-2020:4352
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4352

reference_url	https://access.redhat.com/errata/RHSA-2021:0717
reference_id	RHSA-2021:0717
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0717

reference_url	https://access.redhat.com/errata/RHSA-2021:0733
reference_id	RHSA-2021:0733
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0733

reference_url	https://access.redhat.com/errata/RHSA-2021:0736
reference_id	RHSA-2021:0736
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0736

Weaknesses

cwe_id	367
name	Time-of-check Time-of-use (TOCTOU) Race Condition
description	The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the product to perform invalid actions when the resource is in an unexpected state.

Exploits

Severity_range_score 5.3 - 5.3

Exploitability 0.5

Weighted_severity 4.8

Risk_score 2.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8aqq-hqvu-z3g3

Vulnerability Instance