Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-3c4z-fnu7-h3af
Summarydirectory traversal
Aliases
0
alias CVE-2021-42013
Fixed_packages
0
url pkg:alpm/archlinux/apache@2.4.51-1
purl pkg:alpm/archlinux/apache@2.4.51-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/apache@2.4.51-1
1
url pkg:apache/httpd@2.4.51
purl pkg:apache/httpd@2.4.51
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1dng-z415-n3cp
1
vulnerability VCID-vztc-xrcf-x7bk
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.51
Affected_packages
0
url pkg:alpm/archlinux/apache@2.4.50-1
purl pkg:alpm/archlinux/apache@2.4.50-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3c4z-fnu7-h3af
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/apache@2.4.50-1
1
url pkg:apache/httpd@2.4.49
purl pkg:apache/httpd@2.4.49
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3c4z-fnu7-h3af
1
vulnerability VCID-fzbd-mhtw-eybp
2
vulnerability VCID-p4z4-22k5-kqam
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.49
2
url pkg:apache/httpd@2.4.50
purl pkg:apache/httpd@2.4.50
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3c4z-fnu7-h3af
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.4.50
References
0
reference_url https://security.archlinux.org/ASA-202110-1
reference_id ASA-202110-1
reference_type
scores
url https://security.archlinux.org/ASA-202110-1
1
reference_url https://security.archlinux.org/AVG-2450
reference_id AVG-2450
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2450
2
reference_url https://httpd.apache.org/security/json/CVE-2021-42013.json
reference_id CVE-2021-42013
reference_type
scores
0
value critical
scoring_system apache_httpd
scoring_elements
url https://httpd.apache.org/security/json/CVE-2021-42013.json
Weaknesses
0
cwe_id 22
name Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
description The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Exploits
Severity_range_score9.0 - 10.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-3c4z-fnu7-h3af