Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-2jas-5kc1-puat

Summary The zabbix/src/libs/zbxjson module is vulnerable to a buffer overflow when parsing JSON files via zbx_json_open.

Aliases

alias	CVE-2023-32722

Fixed_packages

url pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/zabbix@1:5.0.8%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18kh-njx3-p7aw

vulnerability	VCID-53f2-uzt4-pqgs

vulnerability	VCID-8zqh-3xt2-nbdq

vulnerability	VCID-bff2-nhum-ckhj

vulnerability	VCID-dr1v-72p6-2yhn

vulnerability	VCID-frdw-trch-uufq

vulnerability	VCID-gapt-kwkw-kkek

vulnerability	VCID-gj5s-dde8-1ubx

vulnerability	VCID-nv7m-hsr3-17gk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.8%252Bdfsg-1%3Fdistro=trixie

url	pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/zabbix@1:5.0.44%2Bdfsg-1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:5.0.44%252Bdfsg-1%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/zabbix@1:6.0.23%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.23%252Bdfsg-1%3Fdistro=trixie

url	pkg:deb/debian/zabbix@1:7.0.9%2Bdfsg-1~bpo12%2B1
purl	pkg:deb/debian/zabbix@1:7.0.9%2Bdfsg-1~bpo12%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.9%252Bdfsg-1~bpo12%252B1

url	pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie
purl	pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie
purl	pkg:deb/debian/zabbix@1:7.0.22%2Bdfsg-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:7.0.22%252Bdfsg-1.1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1

purl pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18kh-njx3-p7aw

vulnerability	VCID-21tq-54r3-cqec

vulnerability	VCID-2jas-5kc1-puat

vulnerability	VCID-35gu-ctk8-2yd2

vulnerability	VCID-3azv-fsyx-n3fz

vulnerability	VCID-3stx-z7ze-wbe8

vulnerability	VCID-53f2-uzt4-pqgs

vulnerability	VCID-547k-dyst-k3gx

vulnerability	VCID-5t3t-6uqs-akbk

vulnerability	VCID-75fb-vhhc-fbe8

vulnerability	VCID-7ajm-my3d-7fgy

vulnerability	VCID-8eb9-mxpg-5kf2

vulnerability	VCID-8zqh-3xt2-nbdq

vulnerability	VCID-ambh-afzs-2kg9

vulnerability	VCID-beqm-vczf-dqgj

vulnerability	VCID-bff2-nhum-ckhj

vulnerability	VCID-buz8-zycr-tbh2

vulnerability	VCID-dr1v-72p6-2yhn

vulnerability	VCID-fefk-6mjh-67fm

vulnerability	VCID-frdw-trch-uufq

vulnerability	VCID-gapt-kwkw-kkek

vulnerability	VCID-gj5s-dde8-1ubx

vulnerability	VCID-h5fw-ktc6-rqd3

vulnerability	VCID-hhsz-ba47-zka4

vulnerability	VCID-jate-jey2-n3g1

vulnerability	VCID-jkcz-zpks-ubgz

vulnerability	VCID-jked-29nn-tqe3

vulnerability	VCID-jx4z-thz3-rbdw

vulnerability	VCID-jy3a-zvh4-b3ag

vulnerability	VCID-kfz9-wq8k-nkb3

vulnerability	VCID-m5us-tmqh-wkbm

vulnerability	VCID-mpy5-d7qa-u7fz

vulnerability	VCID-n38c-6usb-tkgq

vulnerability	VCID-nv7m-hsr3-17gk

vulnerability	VCID-pgj4-u64z-17bt

vulnerability	VCID-pr1g-m4k2-1ue1

vulnerability	VCID-sc8u-4w9c-23ev

vulnerability	VCID-t864-v2g6-jbhk

vulnerability	VCID-tbsd-gk6n-9ygc

vulnerability	VCID-u4hp-dwsj-53b9

vulnerability	VCID-ubyg-pbmy-ekds

vulnerability	VCID-vuzz-by1n-aff9

vulnerability	VCID-w384-t6ne-s3g7

vulnerability	VCID-w4dd-77t2-wuc7

vulnerability	VCID-wurt-zx5x-8kds

vulnerability	VCID-wv5n-ccn5-fqc2

vulnerability	VCID-xaqm-x1w4-s3hn

vulnerability	VCID-xwr8-85au-ukd7

vulnerability	VCID-ytep-z8dn-vfh7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1

url pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/zabbix@1:6.0.14%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18kh-njx3-p7aw

vulnerability	VCID-21tq-54r3-cqec

vulnerability	VCID-2jas-5kc1-puat

vulnerability	VCID-35gu-ctk8-2yd2

vulnerability	VCID-3azv-fsyx-n3fz

vulnerability	VCID-3stx-z7ze-wbe8

vulnerability	VCID-53f2-uzt4-pqgs

vulnerability	VCID-547k-dyst-k3gx

vulnerability	VCID-5t3t-6uqs-akbk

vulnerability	VCID-75fb-vhhc-fbe8

vulnerability	VCID-7ajm-my3d-7fgy

vulnerability	VCID-8eb9-mxpg-5kf2

vulnerability	VCID-8zqh-3xt2-nbdq

vulnerability	VCID-ambh-afzs-2kg9

vulnerability	VCID-beqm-vczf-dqgj

vulnerability	VCID-bff2-nhum-ckhj

vulnerability	VCID-buz8-zycr-tbh2

vulnerability	VCID-dr1v-72p6-2yhn

vulnerability	VCID-fefk-6mjh-67fm

vulnerability	VCID-frdw-trch-uufq

vulnerability	VCID-gapt-kwkw-kkek

vulnerability	VCID-gj5s-dde8-1ubx

vulnerability	VCID-h5fw-ktc6-rqd3

vulnerability	VCID-hhsz-ba47-zka4

vulnerability	VCID-jate-jey2-n3g1

vulnerability	VCID-jkcz-zpks-ubgz

vulnerability	VCID-jked-29nn-tqe3

vulnerability	VCID-jx4z-thz3-rbdw

vulnerability	VCID-jy3a-zvh4-b3ag

vulnerability	VCID-kfz9-wq8k-nkb3

vulnerability	VCID-m5us-tmqh-wkbm

vulnerability	VCID-mpy5-d7qa-u7fz

vulnerability	VCID-n38c-6usb-tkgq

vulnerability	VCID-nv7m-hsr3-17gk

vulnerability	VCID-pgj4-u64z-17bt

vulnerability	VCID-pr1g-m4k2-1ue1

vulnerability	VCID-sc8u-4w9c-23ev

vulnerability	VCID-t864-v2g6-jbhk

vulnerability	VCID-tbsd-gk6n-9ygc

vulnerability	VCID-u4hp-dwsj-53b9

vulnerability	VCID-ubyg-pbmy-ekds

vulnerability	VCID-vuzz-by1n-aff9

vulnerability	VCID-w384-t6ne-s3g7

vulnerability	VCID-w4dd-77t2-wuc7

vulnerability	VCID-wurt-zx5x-8kds

vulnerability	VCID-wv5n-ccn5-fqc2

vulnerability	VCID-xaqm-x1w4-s3hn

vulnerability	VCID-xwr8-85au-ukd7

vulnerability	VCID-ytep-z8dn-vfh7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/zabbix@1:6.0.14%252Bdfsg-1%3Fdistro=trixie

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-32722

reference_id

reference_type

scores

value	0.00357
scoring_system	epss
scoring_elements	0.58319
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-32722

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32722
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32722

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	9.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877
reference_id	1053877
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053877

reference_url

https://support.zabbix.com/browse/ZBX-23390

reference_id

ZBX-23390

reference_type

scores

value	9.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-18T15:26:49Z/

url

https://support.zabbix.com/browse/ZBX-23390

Weaknesses

cwe_id	120
name	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
description	The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Exploits

Severity_range_score 9.6 - 9.6

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2jas-5kc1-puat

Vulnerability Instance