Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-gfjg-76ey-yuhb

Summary GNU GRand Unified Bootloader (GRUB) 2 1.97 only compares the submitted portion of a password with the actual password, which makes it easier for physically proximate attackers to conduct brute force attacks and bypass authentication by submitting a password whose length is 1.

Aliases

alias	CVE-2009-4128

Fixed_packages

url	pkg:deb/debian/grub@0?distro=trixie
purl	pkg:deb/debian/grub@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub@0%3Fdistro=trixie

url	pkg:deb/debian/grub@0.97-77?distro=trixie
purl	pkg:deb/debian/grub@0.97-77?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub@0.97-77%3Fdistro=trixie

url	pkg:deb/debian/grub@0.97-80?distro=trixie
purl	pkg:deb/debian/grub@0.97-80?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub@0.97-80%3Fdistro=trixie

url	pkg:deb/debian/grub@0.97-84?distro=trixie
purl	pkg:deb/debian/grub@0.97-84?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub@0.97-84%3Fdistro=trixie

url	pkg:deb/debian/grub2@1.97%2B20091115-1?distro=trixie
purl	pkg:deb/debian/grub2@1.97%2B20091115-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@1.97%252B20091115-1%3Fdistro=trixie

url pkg:deb/debian/grub2@1.98%2B20100804-14%2Bsqueeze1

purl pkg:deb/debian/grub2@1.98%2B20100804-14%2Bsqueeze1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3dmp-vrx5-t7gz

vulnerability	VCID-3t22-fqkj-27ht

vulnerability	VCID-3utk-v42k-pffa

vulnerability	VCID-3vk8-c5rd-9fd7

vulnerability	VCID-46gu-12gm-s7g5

vulnerability	VCID-61vm-6ue3-p3ds

vulnerability	VCID-94yw-ev59-63dw

vulnerability	VCID-9e22-c3wt-jbak

vulnerability	VCID-9vpk-6dum-gfhr

vulnerability	VCID-bbks-4djj-8kf8

vulnerability	VCID-cbug-3fce-dkd4

vulnerability	VCID-cq6g-ratv-xfbu

vulnerability	VCID-gcfn-ze6a-zkfy

vulnerability	VCID-hafh-p5h3-fyc1

vulnerability	VCID-hq4u-gyqu-dfbw

vulnerability	VCID-m3sy-4er7-4qg3

vulnerability	VCID-m4sz-ew4h-dkcq

vulnerability	VCID-nmdb-rm6q-hfd2

vulnerability	VCID-nutk-tyq9-vues

vulnerability	VCID-nxzk-sra4-byhe

vulnerability	VCID-qkmn-e5z4-2fg2

vulnerability	VCID-s1dt-csey-qyf1

vulnerability	VCID-s437-sun9-b7fm

vulnerability	VCID-v94m-dzsw-4fch

vulnerability	VCID-vnqa-27qj-zkbs

vulnerability	VCID-w3wd-4nx3-cfa7

vulnerability	VCID-xqpt-jp7v-rygg

vulnerability	VCID-y8ra-rffd-aqcy

vulnerability	VCID-z8uj-cj8g-3ff7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@1.98%252B20100804-14%252Bsqueeze1

url pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie

purl pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19fk-tpf7-3keh

vulnerability	VCID-1cwr-bsrw-yfhs

vulnerability	VCID-2xx5-66mt-jqf4

vulnerability	VCID-3c3v-t8fw-a3bp

vulnerability	VCID-5u6c-cpn2-6ueh

vulnerability	VCID-65tq-9p6e-afe1

vulnerability	VCID-77hu-u8cr-4qg8

vulnerability	VCID-7d6c-2jmz-fkah

vulnerability	VCID-7esr-ftvb-t7dh

vulnerability	VCID-89v4-r1v3-jygv

vulnerability	VCID-aj84-4gqd-pqa3

vulnerability	VCID-c9rz-qwga-sfgd

vulnerability	VCID-e8d4-fx3j-1ud8

vulnerability	VCID-ecf6-7z9x-pqhd

vulnerability	VCID-jn6b-fmfw-eugr

vulnerability	VCID-jvfu-u9uq-y7bn

vulnerability	VCID-jzjj-9du8-57db

vulnerability	VCID-mf3u-dqu5-1bfa

vulnerability	VCID-pwm2-dz41-tfce

vulnerability	VCID-py3n-qaj2-bqdz

vulnerability	VCID-qaaw-enbz-guaa

vulnerability	VCID-rtyq-ag7v-zfe4

vulnerability	VCID-uyeg-bkhr-tkc3

vulnerability	VCID-uz42-m8vm-akeg

vulnerability	VCID-vyvj-41b9-67fg

vulnerability	VCID-wdgy-cyyp-fbgj

vulnerability	VCID-xbey-x9g3-duhq

vulnerability	VCID-yj3w-qnzb-b3ef

vulnerability	VCID-ysq1-8hgc-2qfp

vulnerability	VCID-zc2j-85t8-subn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie

url pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie

purl pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19fk-tpf7-3keh

vulnerability	VCID-3c3v-t8fw-a3bp

vulnerability	VCID-e8d4-fx3j-1ud8

vulnerability	VCID-mf3u-dqu5-1bfa

vulnerability	VCID-qaaw-enbz-guaa

vulnerability	VCID-uyeg-bkhr-tkc3

vulnerability	VCID-vyvj-41b9-67fg

vulnerability	VCID-xbey-x9g3-duhq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie

url pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19fk-tpf7-3keh

vulnerability	VCID-3c3v-t8fw-a3bp

vulnerability	VCID-e8d4-fx3j-1ud8

vulnerability	VCID-mf3u-dqu5-1bfa

vulnerability	VCID-qaaw-enbz-guaa

vulnerability	VCID-uyeg-bkhr-tkc3

vulnerability	VCID-vyvj-41b9-67fg

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/grub2@2.14-2?distro=trixie
purl	pkg:deb/debian/grub2@2.14-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/grub2@1.96%2B20080724-16

purl pkg:deb/debian/grub2@1.96%2B20080724-16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3dmp-vrx5-t7gz

vulnerability	VCID-3t22-fqkj-27ht

vulnerability	VCID-3utk-v42k-pffa

vulnerability	VCID-3vk8-c5rd-9fd7

vulnerability	VCID-46gu-12gm-s7g5

vulnerability	VCID-61vm-6ue3-p3ds

vulnerability	VCID-94yw-ev59-63dw

vulnerability	VCID-9e22-c3wt-jbak

vulnerability	VCID-9vpk-6dum-gfhr

vulnerability	VCID-bbks-4djj-8kf8

vulnerability	VCID-cbug-3fce-dkd4

vulnerability	VCID-cq6g-ratv-xfbu

vulnerability	VCID-gcfn-ze6a-zkfy

vulnerability	VCID-gfjg-76ey-yuhb

vulnerability	VCID-hafh-p5h3-fyc1

vulnerability	VCID-hq4u-gyqu-dfbw

vulnerability	VCID-m3sy-4er7-4qg3

vulnerability	VCID-m4sz-ew4h-dkcq

vulnerability	VCID-nmdb-rm6q-hfd2

vulnerability	VCID-nutk-tyq9-vues

vulnerability	VCID-nxzk-sra4-byhe

vulnerability	VCID-qkmn-e5z4-2fg2

vulnerability	VCID-s1dt-csey-qyf1

vulnerability	VCID-s437-sun9-b7fm

vulnerability	VCID-v94m-dzsw-4fch

vulnerability	VCID-vnqa-27qj-zkbs

vulnerability	VCID-w3wd-4nx3-cfa7

vulnerability	VCID-xqpt-jp7v-rygg

vulnerability	VCID-y8ra-rffd-aqcy

vulnerability	VCID-z8uj-cj8g-3ff7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@1.96%252B20080724-16

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4128.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4128.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-4128

reference_id

reference_type

scores

value	0.00039
scoring_system	epss
scoring_elements	0.12204
published_at	2026-06-11T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.12298
published_at	2026-06-12T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.12304
published_at	2026-06-13T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.12283
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-4128

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4128
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4128

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=543153
reference_id	543153
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=543153

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555195
reference_id	555195
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555195

reference_url	https://usn.ubuntu.com/868-1/
reference_id	USN-868-1
reference_type
scores
url	https://usn.ubuntu.com/868-1/

Weaknesses

Exploits

Severity_range_score null

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gfjg-76ey-yuhb

Vulnerability Instance