Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-12xp-45x9-6udw
SummaryA compromised web child process could disable web security opening restrictions, leading to a new child process being spawned within the file:// context. Given a reliable exploit primitive, this new process could be exploited again leading to arbitrary file read.
Aliases
0
alias CVE-2023-23597
Fixed_packages
0
url pkg:mozilla/Firefox@109.0.0
purl pkg:mozilla/Firefox@109.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@109.0.0
Affected_packages
References
0
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2023-01
reference_id mfsa2023-01
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2023-01
Weaknesses
Exploits
Severity_range_score7.0 - 8.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-12xp-45x9-6udw