Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-cud7-ezp9-pfhw

Summary

Aliases

alias	CVE-2016-4800

alias	GHSA-872g-2h8h-362q

Fixed_packages

url	pkg:deb/debian/jetty9@0?distro=trixie
purl	pkg:deb/debian/jetty9@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@0%3Fdistro=trixie

url	pkg:deb/debian/jetty9@9.4.50-4%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/jetty9@9.4.50-4%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.50-4%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/jetty9@9.4.57-1.1~deb12u1?distro=trixie
purl	pkg:deb/debian/jetty9@9.4.57-1.1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.57-1.1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/jetty9@9.4.57-1.1~deb13u1?distro=trixie
purl	pkg:deb/debian/jetty9@9.4.57-1.1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.57-1.1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/jetty9@9.4.58-2?distro=trixie
purl	pkg:deb/debian/jetty9@9.4.58-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.58-2%3Fdistro=trixie

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.9.v20160517

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.9.v20160517

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.9.v20160517

Affected_packages

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.0

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-67kb-auca-y7ap

vulnerability	VCID-74fj-xnga-8qev

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-zpaj-6sn3-7kgz

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.0

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.0.v20150612

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.0.v20150612

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.0.v20150612

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.1.v20150714

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.1.v20150714

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.1.v20150714

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.2.v20150730

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.2.v20150730

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.2.v20150730

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.3.v20150827

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.3.v20150827

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.3.v20150827

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.4.RC0

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.4.RC0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.4.RC0

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.4.RC1

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.4.RC1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.4.RC1

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.4.v20151007

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.4.v20151007

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.4.v20151007

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.5.v20151012

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.5.v20151012

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.5.v20151012

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.6.v20151106

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.6.v20151106

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.6.v20151106

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.7.RC0

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.7.RC0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.7.RC0

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.7.RC1

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.7.RC1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.7.RC1

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.7.v20160115

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.7.v20160115

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.7.v20160115

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.8.RC0

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.8.RC0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.8.RC0

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.8.v20160314

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.8.v20160314

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.8.v20160314

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.9.M0

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.9.M0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.9.M0

url pkg:maven/org.eclipse.jetty/jetty-server@9.3.9.M1

purl pkg:maven/org.eclipse.jetty/jetty-server@9.3.9.M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cnh-pybj-qke2

vulnerability	VCID-414j-4v98-ybe4

vulnerability	VCID-81r7-kn2w-1kfa

vulnerability	VCID-cud7-ezp9-pfhw

vulnerability	VCID-d7wp-3esn-qya4

vulnerability	VCID-dzqa-k3c9-ffe7

vulnerability	VCID-fnjb-ewc9-7fhj

vulnerability	VCID-fy51-qh5f-4fg6

vulnerability	VCID-hp8b-mh6n-5qg6

vulnerability	VCID-qxw6-j892-1kc2

vulnerability	VCID-twyd-q3n5-tygp

vulnerability	VCID-v2re-g9dg-1baj

vulnerability	VCID-xrzp-99us-8ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-server@9.3.9.M1

References

reference_url

http://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00092.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00092.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-4800

reference_id

reference_type

scores

value	0.00609
scoring_system	epss
scoring_elements	0.70055
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-4800

reference_url	https://github.com/eclipse/jetty.project/commit/97af3d663fd22343129e8364d601640649d9eaea
reference_id
reference_type
scores
url	https://github.com/eclipse/jetty.project/commit/97af3d663fd22343129e8364d601640649d9eaea

reference_url

https://security.netapp.com/advisory/ntap-20190307-0006

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20190307-0006

reference_url	https://security.netapp.com/advisory/ntap-20190307-0006/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190307-0006/

reference_url

https://www.oracle.com/security-alerts/cpuoct2020.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpuoct2020.html

reference_url

http://www.ocert.org/advisories/ocert-2016-001.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.ocert.org/advisories/ocert-2016-001.html

reference_url

http://www.securityfocus.com/bid/90945

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/90945

reference_url

http://www.zerodayinitiative.com/advisories/ZDI-16-362

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.zerodayinitiative.com/advisories/ZDI-16-362

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-4800

reference_id

CVE-2016-4800

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2016-4800

reference_url

https://github.com/advisories/GHSA-872g-2h8h-362q

reference_id

GHSA-872g-2h8h-362q

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-872g-2h8h-362q

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	284
name	Improper Access Control
description	The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 9.0 - 10.0

Exploitability 0.5

Weighted_severity 9.0

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cud7-ezp9-pfhw

Vulnerability Instance