Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-bqzt-u1sk-3fht
Summaryaccountsservice no longer drops permissions when writting .pam_environment
Aliases
0
alias CVE-2022-1804
Fixed_packages
0
url pkg:deb/debian/accountsservice@0?distro=trixie
purl pkg:deb/debian/accountsservice@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/accountsservice@0%3Fdistro=trixie
1
url pkg:deb/debian/accountsservice@0.6.55-3?distro=trixie
purl pkg:deb/debian/accountsservice@0.6.55-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-y4tn-cs9p-v7eh
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/accountsservice@0.6.55-3%3Fdistro=trixie
2
url pkg:deb/debian/accountsservice@22.08.8-6?distro=trixie
purl pkg:deb/debian/accountsservice@22.08.8-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/accountsservice@22.08.8-6%3Fdistro=trixie
3
url pkg:deb/debian/accountsservice@23.13.9-7?distro=trixie
purl pkg:deb/debian/accountsservice@23.13.9-7?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/accountsservice@23.13.9-7%3Fdistro=trixie
4
url pkg:deb/debian/accountsservice@23.13.9-8?distro=trixie
purl pkg:deb/debian/accountsservice@23.13.9-8?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/accountsservice@23.13.9-8%3Fdistro=trixie
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-1804
reference_id
reference_type
scores
0
value 0.0002
scoring_system epss
scoring_elements 0.05491
published_at 2026-04-21T12:55:00Z
1
value 0.0002
scoring_system epss
scoring_elements 0.05389
published_at 2026-04-12T12:55:00Z
2
value 0.0002
scoring_system epss
scoring_elements 0.0538
published_at 2026-04-13T12:55:00Z
3
value 0.0002
scoring_system epss
scoring_elements 0.05331
published_at 2026-04-16T12:55:00Z
4
value 0.0002
scoring_system epss
scoring_elements 0.05332
published_at 2026-04-18T12:55:00Z
5
value 0.0002
scoring_system epss
scoring_elements 0.05283
published_at 2026-04-01T12:55:00Z
6
value 0.0002
scoring_system epss
scoring_elements 0.05326
published_at 2026-04-02T12:55:00Z
7
value 0.0002
scoring_system epss
scoring_elements 0.05357
published_at 2026-04-04T12:55:00Z
8
value 0.0002
scoring_system epss
scoring_elements 0.05375
published_at 2026-04-07T12:55:00Z
9
value 0.0002
scoring_system epss
scoring_elements 0.05409
published_at 2026-04-08T12:55:00Z
10
value 0.0002
scoring_system epss
scoring_elements 0.05432
published_at 2026-04-09T12:55:00Z
11
value 0.0002
scoring_system epss
scoring_elements 0.05401
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-1804
1
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2
reference_url https://bugs.launchpad.net/ubuntu/+source/accountsservice/+bug/1974250
reference_id 1974250
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-25T12:58:36Z/
url https://bugs.launchpad.net/ubuntu/+source/accountsservice/+bug/1974250
3
reference_url https://ubuntu.com/security/notices/USN-5439-1
reference_id USN-5439-1
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-25T12:58:36Z/
url https://ubuntu.com/security/notices/USN-5439-1
4
reference_url https://usn.ubuntu.com/5439-1/
reference_id USN-5439-1
reference_type
scores
url https://usn.ubuntu.com/5439-1/
Weaknesses
0
cwe_id 269
name Improper Privilege Management
description The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Exploits
Severity_range_score0.0 - 5.5
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-bqzt-u1sk-3fht