VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
generic_textual	MODERATE	http://blog.python.org/2013/02/announcing-defusedxml-fixes-for-xml.html
generic_textual	MODERATE	http://bugs.python.org/issue17239
generic_textual	MODERATE	http://lists.openstack.org/pipermail/openstack-announce/2013-February/000078.html
generic_textual	MODERATE	http://rhn.redhat.com/errata/RHSA-2013-0657.html
generic_textual	MODERATE	http://rhn.redhat.com/errata/RHSA-2013-0658.html
generic_textual	MODERATE	http://rhn.redhat.com/errata/RHSA-2013-0670.html
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
epss	0.03938	https://api.first.org/data/v1/epss?cve=CVE-2013-1664
generic_textual	MODERATE	https://bugs.launchpad.net/nova/+bug/1100282
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-qrh7-x6fp-c2mp
generic_textual	MODERATE	https://github.com/django/django
generic_textual	MODERATE	https://github.com/django/django/commit/1c60d07ba23e0350351c278ad28d0bd5aa410b40
generic_textual	MODERATE	https://github.com/django/django/commit/d19a27066b2247102e65412aa66917aff0091112
cvssv2	5.0	https://nvd.nist.gov/vuln/detail/CVE-2013-1664
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2013-1664
generic_textual	MODERATE	http://ubuntu.com/usn/usn-1757-1
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2013/02/19/2
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2013/02/19/4

System

Score

Found at

generic_textual

MODERATE

http://blog.python.org/2013/02/announcing-defusedxml-fixes-for-xml.html

generic_textual

MODERATE

http://bugs.python.org/issue17239

generic_textual

MODERATE

http://lists.openstack.org/pipermail/openstack-announce/2013-February/000078.html

generic_textual

MODERATE

http://rhn.redhat.com/errata/RHSA-2013-0657.html

generic_textual

MODERATE

http://rhn.redhat.com/errata/RHSA-2013-0658.html

generic_textual

MODERATE

http://rhn.redhat.com/errata/RHSA-2013-0670.html

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

epss

0.03938

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

generic_textual

MODERATE

https://bugs.launchpad.net/nova/+bug/1100282

cvssv3.1_qr

MODERATE

https://github.com/advisories/GHSA-qrh7-x6fp-c2mp

generic_textual

MODERATE

https://github.com/django/django

generic_textual

MODERATE

https://github.com/django/django/commit/1c60d07ba23e0350351c278ad28d0bd5aa410b40

generic_textual

MODERATE

https://github.com/django/django/commit/d19a27066b2247102e65412aa66917aff0091112

cvssv2

5.0

https://nvd.nist.gov/vuln/detail/CVE-2013-1664

generic_textual

MODERATE

https://nvd.nist.gov/vuln/detail/CVE-2013-1664

generic_textual

MODERATE

http://ubuntu.com/usn/usn-1757-1

generic_textual

MODERATE

http://www.openwall.com/lists/oss-security/2013/02/19/2

generic_textual

MODERATE

http://www.openwall.com/lists/oss-security/2013/02/19/4

Reference id	Reference type	URL
		http://blog.python.org/2013/02/announcing-defusedxml-fixes-for-xml.html
		http://bugs.python.org/issue17239
		http://lists.openstack.org/pipermail/openstack-announce/2013-February/000078.html
		http://rhn.redhat.com/errata/RHSA-2013-0657.html
		http://rhn.redhat.com/errata/RHSA-2013-0658.html
		http://rhn.redhat.com/errata/RHSA-2013-0670.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1664.json
		https://api.first.org/data/v1/epss?cve=CVE-2013-1664
		https://bugs.launchpad.net/nova/+bug/1100282
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1664
		https://github.com/django/django
		https://github.com/django/django/commit/1c60d07ba23e0350351c278ad28d0bd5aa410b40
		https://github.com/django/django/commit/d19a27066b2247102e65412aa66917aff0091112
		https://nvd.nist.gov/vuln/detail/CVE-2013-1664
		http://ubuntu.com/usn/usn-1757-1
		http://www.openwall.com/lists/oss-security/2013/02/19/2
		http://www.openwall.com/lists/oss-security/2013/02/19/4
700948		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700948
700949		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700949
700950		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700950
913808		https://bugzilla.redhat.com/show_bug.cgi?id=913808
cpe:2.3:a:openstack:cinder_folsom:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:cinder_folsom:-:::::::*
cpe:2.3:a:openstack:compute_\(nova\)_essex:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:compute_\(nova\)_essex:-:::::::*
cpe:2.3:a:openstack:compute_\(nova\)_folsom:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:compute_\(nova\)_folsom:-:::::::*
cpe:2.3:a:openstack:folsom:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:folsom:-:::::::*
cpe:2.3:a:openstack:grizzly:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:grizzly:-:::::::*
cpe:2.3:a:openstack:keystone_essex:-:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:keystone_essex:-:::::::*
GHSA-qrh7-x6fp-c2mp		https://github.com/advisories/GHSA-qrh7-x6fp-c2mp
GLSA-201311-06		https://security.gentoo.org/glsa/201311-06
GLSA-201412-11		https://security.gentoo.org/glsa/201412-11
RHSA-2013:0596		https://access.redhat.com/errata/RHSA-2013:0596
RHSA-2013:0657		https://access.redhat.com/errata/RHSA-2013:0657
RHSA-2013:0658		https://access.redhat.com/errata/RHSA-2013:0658
RHSA-2013:0670		https://access.redhat.com/errata/RHSA-2013:0670
USN-1730-1		https://usn.ubuntu.com/1730-1/
USN-1731-1		https://usn.ubuntu.com/1731-1/
USN-1734-1		https://usn.ubuntu.com/1734-1/
USN-1757-1		https://usn.ubuntu.com/1757-1/

Reference id

Reference type

URL

http://blog.python.org/2013/02/announcing-defusedxml-fixes-for-xml.html

http://bugs.python.org/issue17239

http://lists.openstack.org/pipermail/openstack-announce/2013-February/000078.html

http://rhn.redhat.com/errata/RHSA-2013-0657.html

http://rhn.redhat.com/errata/RHSA-2013-0658.html

http://rhn.redhat.com/errata/RHSA-2013-0670.html

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1664.json

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

https://bugs.launchpad.net/nova/+bug/1100282

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1664

https://github.com/django/django

https://github.com/django/django/commit/1c60d07ba23e0350351c278ad28d0bd5aa410b40

https://github.com/django/django/commit/d19a27066b2247102e65412aa66917aff0091112

https://nvd.nist.gov/vuln/detail/CVE-2013-1664

http://ubuntu.com/usn/usn-1757-1

http://www.openwall.com/lists/oss-security/2013/02/19/2

http://www.openwall.com/lists/oss-security/2013/02/19/4

700948

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700948

700949

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700949

700950

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700950

913808

https://bugzilla.redhat.com/show_bug.cgi?id=913808

cpe:2.3:a:openstack:cinder_folsom:-:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:cinder_folsom:-:*:*:*:*:*:*:*

cpe:2.3:a:openstack:compute_\(nova\)_essex:-:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:compute_\(nova\)_essex:-:*:*:*:*:*:*:*

cpe:2.3:a:openstack:compute_\(nova\)_folsom:-:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:compute_\(nova\)_folsom:-:*:*:*:*:*:*:*

cpe:2.3:a:openstack:folsom:-:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:folsom:-:*:*:*:*:*:*:*

cpe:2.3:a:openstack:grizzly:-:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:grizzly:-:*:*:*:*:*:*:*

cpe:2.3:a:openstack:keystone_essex:-:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:keystone_essex:-:*:*:*:*:*:*:*

GHSA-qrh7-x6fp-c2mp

https://github.com/advisories/GHSA-qrh7-x6fp-c2mp

GLSA-201311-06

https://security.gentoo.org/glsa/201311-06

GLSA-201412-11

https://security.gentoo.org/glsa/201412-11

RHSA-2013:0596

https://access.redhat.com/errata/RHSA-2013:0596

RHSA-2013:0657

https://access.redhat.com/errata/RHSA-2013:0657

RHSA-2013:0658

https://access.redhat.com/errata/RHSA-2013:0658

RHSA-2013:0670

https://access.redhat.com/errata/RHSA-2013:0670

USN-1730-1

https://usn.ubuntu.com/1730-1/

USN-1731-1

https://usn.ubuntu.com/1731-1/

USN-1734-1

https://usn.ubuntu.com/1734-1/

USN-1757-1

https://usn.ubuntu.com/1757-1/

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:02:05.642195+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201311-06	38.0.0

2026-04-01T13:02:05.642195+00:00

Gentoo Importer

Import

https://security.gentoo.org/glsa/201311-06

38.0.0

Vulnerability ID	VCID-t88t-p8tx-cfcu
Aliases	CVE-2013-1664 GHSA-qrh7-x6fp-c2mp
Summary	Multiple vulnerabilities have been found in libxml2, allowing remote attackers to execute arbitrary code or cause Denial of Service.
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

CWE-611	Improper Restriction of XML External Entity Reference
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-119	Improper Restriction of Operations within the Bounds of a Memory Buffer

Percentile	0.88285
EPSS Score	0.03938
Published At	April 1, 2026, 12:55 p.m.