Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-m9sv-b22k-rkg3
Summary
Aliases
0
alias CVE-2024-56201
Fixed_packages
Affected_packages
References
0
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1
reference_url https://github.com/pallets/jinja/issues/1792
reference_id 1792
reference_type
scores
0
value 5.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-24T01:44:55Z/
url https://github.com/pallets/jinja/issues/1792
2
reference_url https://github.com/pallets/jinja/releases/tag/3.1.5
reference_id 3.1.5
reference_type
scores
0
value 5.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-24T01:44:55Z/
url https://github.com/pallets/jinja/releases/tag/3.1.5
3
reference_url https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f
reference_id 767b23617628419ae3709ccfb02f9602ae9fe51f
reference_type
scores
0
value 5.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-24T01:44:55Z/
url https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f
4
reference_url https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699
reference_id GHSA-gmj6-6f8f-6699
reference_type
scores
0
value 5.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-24T01:44:55Z/
url https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699
Weaknesses
0
cwe_id 150
name Improper Neutralization of Escape, Meta, or Control Sequences
description The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as escape, meta, or control character sequences when they are sent to a downstream component.
Exploits
Severity_range_score5.4 - 8.1
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-m9sv-b22k-rkg3