Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-156d-3c78-mbh4

Summary GramAddict through 1.2.3 allows remote attackers to execute arbitrary code because of use of UIAutomator2 and ATX-Agent. The attacker must be able to reach TCP port 7912, e.g., by being on the same Wi-Fi network.

Aliases

alias	CVE-2020-36245

alias	PYSEC-2021-65

Fixed_packages

url	pkg:pypi/gramaddict@1.2.4
purl	pkg:pypi/gramaddict@1.2.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.4

Affected_packages

url pkg:pypi/gramaddict@1.2.0b1

purl pkg:pypi/gramaddict@1.2.0b1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-156d-3c78-mbh4

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.0b1

url pkg:pypi/gramaddict@1.2.0b2

purl pkg:pypi/gramaddict@1.2.0b2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-156d-3c78-mbh4

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.0b2

url pkg:pypi/gramaddict@1.2.0b3

purl pkg:pypi/gramaddict@1.2.0b3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-156d-3c78-mbh4

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.0b3

url pkg:pypi/gramaddict@1.2.0

purl pkg:pypi/gramaddict@1.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-156d-3c78-mbh4

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.0

url pkg:pypi/gramaddict@1.2.1

purl pkg:pypi/gramaddict@1.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-156d-3c78-mbh4

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.1

url pkg:pypi/gramaddict@1.2.2

purl pkg:pypi/gramaddict@1.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-156d-3c78-mbh4

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.2

url pkg:pypi/gramaddict@1.2.3

purl pkg:pypi/gramaddict@1.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-156d-3c78-mbh4

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gramaddict@1.2.3

References

reference_url	https://github.com/GramAddict/bot/issues/134
reference_id
reference_type
scores
url	https://github.com/GramAddict/bot/issues/134

Weaknesses

Exploits

Severity_range_score null

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-156d-3c78-mbh4

Vulnerability Instance