Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-g3vu-7xdz-6yff
Summaryinsightsoftware Hive JDBC through 2.6.13 has a remote code execution vulnerability. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the database. This can further lead to remote code execution.
Aliases
0
alias CVE-2024-45199
Fixed_packages
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-45199
reference_id
reference_type
scores
0
value 0.02328
scoring_system epss
scoring_elements 0.85173
published_at 2026-06-11T12:55:00Z
1
value 0.02328
scoring_system epss
scoring_elements 0.85226
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-45199
1
reference_url https://gist.github.com/azraelxuemo/d019ad079d540ef28870dbd9552a7c62
reference_id d019ad079d540ef28870dbd9552a7c62
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:16:29Z/
url https://gist.github.com/azraelxuemo/d019ad079d540ef28870dbd9552a7c62
Weaknesses
Exploits
Severity_range_score8.8 - 8.8
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-g3vu-7xdz-6yff