Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-7831-8u7z-6fep
SummaryImproper Preservation of Permissions vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/editpage/IntroMessageBuilder.Php, includes/Permissions/PermissionManager.Php, includes/Permissions/RestrictionStore.Php. This issue affects MediaWiki: before 1.42.6, 1.43.1.
Aliases
0
alias CVE-2025-32697
Fixed_packages
0
url pkg:deb/debian/mediawiki@1:1.39.17-1%2Bdeb12u2
purl pkg:deb/debian/mediawiki@1:1.39.17-1%2Bdeb12u2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.39.17-1%252Bdeb12u2
1
url pkg:deb/debian/mediawiki@1:1.43.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/mediawiki@1:1.43.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-1~deb13u1?distro=trixie
purl pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-buwp-69zb-93hs
1
vulnerability VCID-cbtm-g4t5-u3am
2
vulnerability VCID-d5vz-puw9-t7er
3
vulnerability VCID-kw32-af5a-hqg8
4
vulnerability VCID-q7k6-59z5-d7a7
5
vulnerability VCID-wktm-ya6k-v7dv
6
vulnerability VCID-x8t7-agtn-zudu
7
vulnerability VCID-xdct-ca96-3uat
8
vulnerability VCID-zmax-894d-5kfd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.6%252Bdfsg-1~deb13u1%3Fdistro=trixie
3
url pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-1~deb13u1
purl pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-1~deb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-buwp-69zb-93hs
1
vulnerability VCID-cbtm-g4t5-u3am
2
vulnerability VCID-d5vz-puw9-t7er
3
vulnerability VCID-kw32-af5a-hqg8
4
vulnerability VCID-q7k6-59z5-d7a7
5
vulnerability VCID-wktm-ya6k-v7dv
6
vulnerability VCID-x8t7-agtn-zudu
7
vulnerability VCID-xdct-ca96-3uat
8
vulnerability VCID-zmax-894d-5kfd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.6%252Bdfsg-1~deb13u1
4
url pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.6%252Bdfsg-2%3Fdistro=trixie
5
url pkg:deb/debian/mediawiki@1:1.43.8%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/mediawiki@1:1.43.8%2Bdfsg-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kw32-af5a-hqg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.8%252Bdfsg-1%3Fdistro=trixie
6
url pkg:deb/debian/mediawiki@1:1.43.8%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/mediawiki@1:1.43.8%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.8%252Bdfsg-2%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/mediawiki@1:1.35.13-1%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/mediawiki@1:1.35.13-1%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7831-8u7z-6fep
1
vulnerability VCID-cbtm-g4t5-u3am
2
vulnerability VCID-d5vz-puw9-t7er
3
vulnerability VCID-kw32-af5a-hqg8
4
vulnerability VCID-wktm-ya6k-v7dv
5
vulnerability VCID-x8t7-agtn-zudu
6
vulnerability VCID-zmax-894d-5kfd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.35.13-1%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/mediawiki@1:1.35.13-1%2Bdeb11u2
purl pkg:deb/debian/mediawiki@1:1.35.13-1%2Bdeb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2wcb-hty6-uyez
1
vulnerability VCID-3zue-5ccg-23hs
2
vulnerability VCID-4yhr-jjt9-afaq
3
vulnerability VCID-5myd-ngfx-5qhb
4
vulnerability VCID-74ej-8sna-jyek
5
vulnerability VCID-7831-8u7z-6fep
6
vulnerability VCID-7wh4-say2-pqap
7
vulnerability VCID-8uw8-ja3w-r3da
8
vulnerability VCID-95d1-mkm6-r3cq
9
vulnerability VCID-a8nh-mvhd-bka7
10
vulnerability VCID-b5ke-cjtq-q3ev
11
vulnerability VCID-cbtm-g4t5-u3am
12
vulnerability VCID-d5vz-puw9-t7er
13
vulnerability VCID-den1-257q-euc9
14
vulnerability VCID-e8np-4nbw-t3b3
15
vulnerability VCID-fptt-2t1j-8fec
16
vulnerability VCID-h3d2-nr9e-nqbk
17
vulnerability VCID-h789-pcxv-kbgd
18
vulnerability VCID-k7qb-7hbj-1qc2
19
vulnerability VCID-kw32-af5a-hqg8
20
vulnerability VCID-m1xy-yucr-dqfs
21
vulnerability VCID-m7uw-sa5j-u3bw
22
vulnerability VCID-mbs4-gs37-1fh5
23
vulnerability VCID-pm3s-z5ap-qqay
24
vulnerability VCID-pwjk-pzpj-aff6
25
vulnerability VCID-qpgu-mg6m-vyef
26
vulnerability VCID-sr9a-a6vt-1qgt
27
vulnerability VCID-tutk-y8jg-n7dh
28
vulnerability VCID-v3dp-7stt-tygf
29
vulnerability VCID-vjd5-jv5h-yfhw
30
vulnerability VCID-w51y-hprj-buap
31
vulnerability VCID-wktm-ya6k-v7dv
32
vulnerability VCID-wraf-59ce-u3br
33
vulnerability VCID-x8t7-agtn-zudu
34
vulnerability VCID-xtd9-wbd9-67ew
35
vulnerability VCID-z3qw-4ejj-uffj
36
vulnerability VCID-z8qp-v64u-tuh8
37
vulnerability VCID-zmax-894d-5kfd
38
vulnerability VCID-ztxx-cc2c-87at
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.35.13-1%252Bdeb11u2
2
url pkg:deb/debian/mediawiki@1:1.39.17-1~deb12u1?distro=trixie
purl pkg:deb/debian/mediawiki@1:1.39.17-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7831-8u7z-6fep
1
vulnerability VCID-cbtm-g4t5-u3am
2
vulnerability VCID-d5vz-puw9-t7er
3
vulnerability VCID-kw32-af5a-hqg8
4
vulnerability VCID-wktm-ya6k-v7dv
5
vulnerability VCID-x8t7-agtn-zudu
6
vulnerability VCID-zmax-894d-5kfd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.39.17-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/mediawiki@1:1.39.17-1~deb12u1
purl pkg:deb/debian/mediawiki@1:1.39.17-1~deb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7831-8u7z-6fep
1
vulnerability VCID-cbtm-g4t5-u3am
2
vulnerability VCID-d5vz-puw9-t7er
3
vulnerability VCID-kw32-af5a-hqg8
4
vulnerability VCID-wktm-ya6k-v7dv
5
vulnerability VCID-x8t7-agtn-zudu
6
vulnerability VCID-zmax-894d-5kfd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.39.17-1~deb12u1
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-32697
reference_id
reference_type
scores
0
value 0.00258
scoring_system epss
scoring_elements 0.49172
published_at 2026-04-02T12:55:00Z
1
value 0.0031
scoring_system epss
scoring_elements 0.54193
published_at 2026-04-21T12:55:00Z
2
value 0.0031
scoring_system epss
scoring_elements 0.54159
published_at 2026-04-09T12:55:00Z
3
value 0.0031
scoring_system epss
scoring_elements 0.54209
published_at 2026-04-11T12:55:00Z
4
value 0.0031
scoring_system epss
scoring_elements 0.54191
published_at 2026-04-12T12:55:00Z
5
value 0.0031
scoring_system epss
scoring_elements 0.5417
published_at 2026-04-13T12:55:00Z
6
value 0.0031
scoring_system epss
scoring_elements 0.54208
published_at 2026-04-16T12:55:00Z
7
value 0.0031
scoring_system epss
scoring_elements 0.54212
published_at 2026-04-18T12:55:00Z
8
value 0.0031
scoring_system epss
scoring_elements 0.54135
published_at 2026-04-04T12:55:00Z
9
value 0.0031
scoring_system epss
scoring_elements 0.5411
published_at 2026-04-07T12:55:00Z
10
value 0.0031
scoring_system epss
scoring_elements 0.54161
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-32697
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32697
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32697
2
reference_url https://phabricator.wikimedia.org/T140010
reference_id T140010
reference_type
scores
0
value 0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N/RE:M/U:Green
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-10T19:05:19Z/
url https://phabricator.wikimedia.org/T140010
3
reference_url https://phabricator.wikimedia.org/T24521
reference_id T24521
reference_type
scores
0
value 0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N/RE:M/U:Green
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-10T19:05:19Z/
url https://phabricator.wikimedia.org/T24521
4
reference_url https://phabricator.wikimedia.org/T62109
reference_id T62109
reference_type
scores
0
value 0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N/RE:M/U:Green
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-10T19:05:19Z/
url https://phabricator.wikimedia.org/T62109
Weaknesses
0
cwe_id 281
name Improper Preservation of Permissions
description The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.
Exploits
Severity_range_score0.0 - 0.0
Exploitability0.5
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-7831-8u7z-6fep