Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-5c7k-2w7y-53a4
Summary
Security researcher Ash reported an issue where the
extracted files for updates to existing files are not read only during the
update process. This allows for the potential replacement or modification of
these files during the update process if a malicious application is present on
the local system.
Aliases
0
alias CVE-2014-1496
Fixed_packages
0
url pkg:mozilla/Firefox@28.0.0
purl pkg:mozilla/Firefox@28.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@28.0.0
1
url pkg:mozilla/Firefox%20ESR@24.4.0
purl pkg:mozilla/Firefox%20ESR@24.4.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@24.4.0
2
url pkg:mozilla/Seamonkey@2.25.0
purl pkg:mozilla/Seamonkey@2.25.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Seamonkey@2.25.0
3
url pkg:mozilla/Thunderbird@24.4.0
purl pkg:mozilla/Thunderbird@24.4.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@24.4.0
Affected_packages
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1496
reference_id CVE-2014-1496
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1496
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2014-16
reference_id mfsa2014-16
reference_type
scores
0
value none
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2014-16
Weaknesses
Exploits
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-5c7k-2w7y-53a4