Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-2975-xhf4-ckcj

Summary

Improper Access Control
Passwordless login for LDAP users

Aliases

alias	GMS-2018-65

Fixed_packages

url	pkg:composer/ezsystems/ezpublish-legacy@2017.12.4%2B1
purl	pkg:composer/ezsystems/ezpublish-legacy@2017.12.4%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-legacy@2017.12.4%252B1

url	pkg:composer/ezsystems/ezpublish-legacy@2018.6.1%2B3
purl	pkg:composer/ezsystems/ezpublish-legacy@2018.6.1%2B3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-legacy@2018.6.1%252B3

Affected_packages

url pkg:composer/ezsystems/ezpublish-legacy@2011.0.0

purl pkg:composer/ezsystems/ezpublish-legacy@2011.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1q2y-ruwv-rqgr

vulnerability	VCID-2975-xhf4-ckcj

vulnerability	VCID-bmkb-zcyd-6kdk

vulnerability	VCID-eaqz-xw6f-6yeb

vulnerability	VCID-ufw5-emg4-cqd6

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-legacy@2011.0.0

url pkg:composer/ezsystems/ezpublish-legacy@2018.6.0

purl pkg:composer/ezsystems/ezpublish-legacy@2018.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2975-xhf4-ckcj

vulnerability	VCID-29ju-364n-qkch

vulnerability	VCID-eaqz-xw6f-6yeb

vulnerability	VCID-ufw5-emg4-cqd6

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-legacy@2018.6.0

url pkg:composer/ezsystems/ezpublish-legacy@2018.9.0

purl pkg:composer/ezsystems/ezpublish-legacy@2018.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2975-xhf4-ckcj

vulnerability	VCID-eaqz-xw6f-6yeb

vulnerability	VCID-ufw5-emg4-cqd6

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-legacy@2018.9.0

References

reference_url	http://share.ez.no/community-project/security-advisories/ezsa-2018-005-passwordless-login-for-ldap-users
reference_id
reference_type
scores
url	http://share.ez.no/community-project/security-advisories/ezsa-2018-005-passwordless-login-for-ldap-users

Weaknesses

Exploits

Severity_range_score null

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2975-xhf4-ckcj

Vulnerability Instance