Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-qf8d-ntcb-cyct

Summary SimpleXMLRPCServer.py in SimpleXMLRPCServer in Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an XML-RPC POST request that contains a smaller amount of data than specified by the Content-Length header.

Aliases

alias	CVE-2012-0845

Fixed_packages

url	pkg:deb/debian/python2.7@2.7.3~rc1-1?distro=bullseye
purl	pkg:deb/debian/python2.7@2.7.3~rc1-1?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.3~rc1-1%3Fdistro=bullseye

url	pkg:deb/debian/python2.7@2.7.18-8%2Bdeb11u1?distro=bullseye
purl	pkg:deb/debian/python2.7@2.7.18-8%2Bdeb11u1?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.18-8%252Bdeb11u1%3Fdistro=bullseye

url	pkg:ebuild/dev-lang/python@2.6.8
purl	pkg:ebuild/dev-lang/python@2.6.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@2.6.8

url	pkg:ebuild/dev-lang/python@2.7.3-r1
purl	pkg:ebuild/dev-lang/python@2.7.3-r1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@2.7.3-r1

url	pkg:ebuild/dev-lang/python@3.2.5-r1
purl	pkg:ebuild/dev-lang/python@3.2.5-r1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.2.5-r1

url	pkg:ebuild/dev-lang/python@3.3.2-r1
purl	pkg:ebuild/dev-lang/python@3.3.2-r1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.3.2-r1

Affected_packages

url pkg:rpm/redhat/python@2.6.6-29.el6_2?arch=2

purl pkg:rpm/redhat/python@2.6.6-29.el6_2?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-16qu-ujqu-hybc

vulnerability	VCID-2hjs-1vje-ebav

vulnerability	VCID-36sb-zfdw-jfdn

vulnerability	VCID-qf8d-ntcb-cyct

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.6.6-29.el6_2%3Farch=2

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0845.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0845.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0845

reference_id

reference_type

scores

value	0.02773
scoring_system	epss
scoring_elements	0.86318
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0845

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=789790
reference_id	789790
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=789790

reference_url	https://security.gentoo.org/glsa/201401-04
reference_id	GLSA-201401-04
reference_type
scores
url	https://security.gentoo.org/glsa/201401-04

reference_url	https://access.redhat.com/errata/RHSA-2012:0744
reference_id	RHSA-2012:0744
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0744

Weaknesses

Exploits

Severity_range_score null

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qf8d-ntcb-cyct

Vulnerability Instance