Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-nsa4-b31c-37g2
Summary
Multiple vulnerabilities have been discovered in Ruby that allow for
    attacks including arbitrary code execution and Denial of Service.
Aliases
0
alias CVE-2008-2376
1
alias GHSA-f7wf-fwmg-r7g3
Fixed_packages
0
url pkg:ebuild/dev-lang/ruby@1.8.6_p287-r1
purl pkg:ebuild/dev-lang/ruby@1.8.6_p287-r1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@1.8.6_p287-r1
Affected_packages
0
url pkg:rpm/redhat/ruby@1.6.4-6?arch=el2
purl pkg:rpm/redhat/ruby@1.6.4-6?arch=el2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5bte-uex2-f7du
1
vulnerability VCID-9gp6-pvw1-ufhs
2
vulnerability VCID-c9sy-czbr-tfer
3
vulnerability VCID-kfgm-et3n-ckg6
4
vulnerability VCID-mzqm-gc4w-fbfp
5
vulnerability VCID-nsa4-b31c-37g2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby@1.6.4-6%3Farch=el2
1
url pkg:rpm/redhat/ruby@1.6.8-12?arch=el3
purl pkg:rpm/redhat/ruby@1.6.8-12?arch=el3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5bte-uex2-f7du
1
vulnerability VCID-9gp6-pvw1-ufhs
2
vulnerability VCID-c9sy-czbr-tfer
3
vulnerability VCID-kfgm-et3n-ckg6
4
vulnerability VCID-mzqm-gc4w-fbfp
5
vulnerability VCID-nsa4-b31c-37g2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby@1.6.8-12%3Farch=el3
2
url pkg:rpm/redhat/ruby@1.8.1-7.el4_6?arch=1
purl pkg:rpm/redhat/ruby@1.8.1-7.el4_6?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5bte-uex2-f7du
1
vulnerability VCID-9gp6-pvw1-ufhs
2
vulnerability VCID-c9sy-czbr-tfer
3
vulnerability VCID-jx79-wpg7-2yaa
4
vulnerability VCID-mzqm-gc4w-fbfp
5
vulnerability VCID-nsa4-b31c-37g2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby@1.8.1-7.el4_6%3Farch=1
3
url pkg:rpm/redhat/ruby@1.8.5-5.el5_2?arch=3
purl pkg:rpm/redhat/ruby@1.8.5-5.el5_2?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5bte-uex2-f7du
1
vulnerability VCID-9gp6-pvw1-ufhs
2
vulnerability VCID-c9sy-czbr-tfer
3
vulnerability VCID-jx79-wpg7-2yaa
4
vulnerability VCID-mzqm-gc4w-fbfp
5
vulnerability VCID-nsa4-b31c-37g2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby@1.8.5-5.el5_2%3Farch=3
4
url pkg:ruby/ruby@1.8.7
purl pkg:ruby/ruby@1.8.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvc-uzev-wua4
1
vulnerability VCID-5bte-uex2-f7du
2
vulnerability VCID-8fbf-8fea-27d9
3
vulnerability VCID-94vg-kqhg-qfdv
4
vulnerability VCID-9gp6-pvw1-ufhs
5
vulnerability VCID-9ukz-9357-aqb6
6
vulnerability VCID-a15m-bcma-vfa7
7
vulnerability VCID-bv9s-j5yk-m3aw
8
vulnerability VCID-c9sy-czbr-tfer
9
vulnerability VCID-ea13-mua4-1fb9
10
vulnerability VCID-fw7k-88kf-1kgg
11
vulnerability VCID-jx79-wpg7-2yaa
12
vulnerability VCID-mzqm-gc4w-fbfp
13
vulnerability VCID-nsa4-b31c-37g2
14
vulnerability VCID-pegr-f5mh-ekdz
15
vulnerability VCID-qjwb-ph9u-bubf
16
vulnerability VCID-xtny-ychb-fff1
17
vulnerability VCID-ynyp-ybd9-57df
resource_url http://public2.vulnerablecode.io/packages/pkg:ruby/ruby@1.8.7
5
url pkg:ruby/ruby@1.8.8
purl pkg:ruby/ruby@1.8.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2ww6-w1k6-xqbp
1
vulnerability VCID-4yvc-uzev-wua4
2
vulnerability VCID-5bte-uex2-f7du
3
vulnerability VCID-8fbf-8fea-27d9
4
vulnerability VCID-9gp6-pvw1-ufhs
5
vulnerability VCID-9ukz-9357-aqb6
6
vulnerability VCID-a15m-bcma-vfa7
7
vulnerability VCID-ar57-vndq-yka6
8
vulnerability VCID-bjts-v9q2-9yg8
9
vulnerability VCID-bv9s-j5yk-m3aw
10
vulnerability VCID-c9sy-czbr-tfer
11
vulnerability VCID-ea13-mua4-1fb9
12
vulnerability VCID-fw7k-88kf-1kgg
13
vulnerability VCID-jx79-wpg7-2yaa
14
vulnerability VCID-mzqm-gc4w-fbfp
15
vulnerability VCID-nsa4-b31c-37g2
16
vulnerability VCID-nxub-6qsu-hbhk
17
vulnerability VCID-pegr-f5mh-ekdz
18
vulnerability VCID-qjwb-ph9u-bubf
19
vulnerability VCID-r8r3-3x8p-ebh5
20
vulnerability VCID-rh8q-s45v-xbhg
21
vulnerability VCID-weh8-bs3g-a3hp
22
vulnerability VCID-xtny-ychb-fff1
resource_url http://public2.vulnerablecode.io/packages/pkg:ruby/ruby@1.8.8
References
0
reference_url http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html
reference_id
reference_type
scores
url http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2376.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2376.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2008-2376
reference_id
reference_type
scores
0
value 0.11359
scoring_system epss
scoring_elements 0.93532
published_at 2026-04-07T12:55:00Z
1
value 0.11359
scoring_system epss
scoring_elements 0.93549
published_at 2026-04-13T12:55:00Z
2
value 0.11359
scoring_system epss
scoring_elements 0.93524
published_at 2026-04-02T12:55:00Z
3
value 0.11359
scoring_system epss
scoring_elements 0.93515
published_at 2026-04-01T12:55:00Z
4
value 0.11359
scoring_system epss
scoring_elements 0.9354
published_at 2026-04-08T12:55:00Z
5
value 0.11359
scoring_system epss
scoring_elements 0.93543
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2008-2376
3
reference_url http://secunia.com/advisories/30927
reference_id
reference_type
scores
url http://secunia.com/advisories/30927
4
reference_url http://secunia.com/advisories/31006
reference_id
reference_type
scores
url http://secunia.com/advisories/31006
5
reference_url http://secunia.com/advisories/31062
reference_id
reference_type
scores
url http://secunia.com/advisories/31062
6
reference_url http://secunia.com/advisories/31090
reference_id
reference_type
scores
url http://secunia.com/advisories/31090
7
reference_url http://secunia.com/advisories/31181
reference_id
reference_type
scores
url http://secunia.com/advisories/31181
8
reference_url http://secunia.com/advisories/31256
reference_id
reference_type
scores
url http://secunia.com/advisories/31256
9
reference_url http://secunia.com/advisories/32219
reference_id
reference_type
scores
url http://secunia.com/advisories/32219
10
reference_url http://secunia.com/advisories/33178
reference_id
reference_type
scores
url http://secunia.com/advisories/33178
11
reference_url http://security.gentoo.org/glsa/glsa-200812-17.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-200812-17.xml
12
reference_url https://issues.rpath.com/browse/RPL-2639
reference_id
reference_type
scores
url https://issues.rpath.com/browse/RPL-2639
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2008-2376
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2008-2376
14
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9863
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9863
15
reference_url http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=rev&revision=17756
reference_id
reference_type
scores
url http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=rev&revision=17756
16
reference_url https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00112.html
reference_id
reference_type
scores
url https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00112.html
17
reference_url https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00161.html
reference_id
reference_type
scores
url https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00161.html
18
reference_url http://wiki.rpath.com/Advisories:rPSA-2008-0218
reference_id
reference_type
scores
url http://wiki.rpath.com/Advisories:rPSA-2008-0218
19
reference_url http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0218
reference_id
reference_type
scores
url http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0218
20
reference_url http://www.debian.org/security/2008/dsa-1612
reference_id
reference_type
scores
url http://www.debian.org/security/2008/dsa-1612
21
reference_url http://www.debian.org/security/2008/dsa-1618
reference_id
reference_type
scores
url http://www.debian.org/security/2008/dsa-1618
22
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2008:140
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2008:140
23
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2008:141
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2008:141
24
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2008:142
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2008:142
25
reference_url http://www.openwall.com/lists/oss-security/2008/07/02/3
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2008/07/02/3
26
reference_url http://www.redhat.com/support/errata/RHSA-2008-0561.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2008-0561.html
27
reference_url http://www.securityfocus.com/archive/1/494104/100/0/threaded
reference_id
reference_type
scores
url http://www.securityfocus.com/archive/1/494104/100/0/threaded
28
reference_url http://www.us-cert.gov/cas/techalerts/TA08-260A.html
reference_id
reference_type
scores
url http://www.us-cert.gov/cas/techalerts/TA08-260A.html
29
reference_url http://www.vupen.com/english/advisories/2008/2584
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2008/2584
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=453589
reference_id 453589
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=453589
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.6.230:*:*:*:*:*:*:*
reference_id cpe:2.3:a:ruby-lang:ruby:1.8.6.230:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.6.230:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:fedora_8:1.8.6.230:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:fedora_8:1.8.6.230:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:fedora_8:1.8.6.230:*:*:*:*:*:*:*
33
reference_url https://security.gentoo.org/glsa/200812-17
reference_id GLSA-200812-17
reference_type
scores
url https://security.gentoo.org/glsa/200812-17
34
reference_url https://access.redhat.com/errata/RHSA-2008:0561
reference_id RHSA-2008:0561
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0561
35
reference_url https://access.redhat.com/errata/RHSA-2008:0562
reference_id RHSA-2008:0562
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0562
36
reference_url https://usn.ubuntu.com/651-1/
reference_id USN-651-1
reference_type
scores
url https://usn.ubuntu.com/651-1/
Weaknesses
0
cwe_id 190
name Integer Overflow or Wraparound
description The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
1
cwe_id 189
name Numeric Errors
description Weaknesses in this category are related to improper calculation or conversion of numbers.
Exploits
Severity_range_score7.5 - 7.5
Exploitability0.5
Weighted_severity6.8
Risk_score3.4
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-nsa4-b31c-37g2