Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-dxkq-jhq6-qbad
Summarydenial of service
Aliases
0
alias CVE-2020-13934
1
alias GHSA-vf77-8h7g-gghp
Fixed_packages
0
url pkg:alpm/archlinux/tomcat9@9.0.37-1
purl pkg:alpm/archlinux/tomcat9@9.0.37-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/tomcat9@9.0.37-1
1
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
2
url pkg:maven/org.apache.tomcat/tomcat@8.5.56
purl pkg:maven/org.apache.tomcat/tomcat@8.5.56
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.5.56
3
url pkg:maven/org.apache.tomcat/tomcat@9.0.36
purl pkg:maven/org.apache.tomcat/tomcat@9.0.36
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.36
4
url pkg:maven/org.apache.tomcat/tomcat@10.0.0-M6
purl pkg:maven/org.apache.tomcat/tomcat@10.0.0-M6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.0.0-M6
5
url pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.56
purl pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.56
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.56
6
url pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.36
purl pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.36
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.36
7
url pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.0-M6
purl pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.0-M6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.0-M6
Affected_packages
0
url pkg:alpm/archlinux/tomcat9@9.0.35-1
purl pkg:alpm/archlinux/tomcat9@9.0.35-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dxkq-jhq6-qbad
1
vulnerability VCID-jbh7-zmq6-bfgs
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/tomcat9@9.0.35-1
1
url pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
purl pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9e2b-7qtg-tbaj
1
vulnerability VCID-dxkq-jhq6-qbad
2
vulnerability VCID-jbh7-zmq6-bfgs
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
2
url pkg:maven/org.apache.tomcat/tomcat@8.5.1
purl pkg:maven/org.apache.tomcat/tomcat@8.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dxkq-jhq6-qbad
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.5.1
3
url pkg:maven/org.apache.tomcat/tomcat@9.0.0-M.5
purl pkg:maven/org.apache.tomcat/tomcat@9.0.0-M.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dxkq-jhq6-qbad
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0-M.5
4
url pkg:maven/org.apache.tomcat/tomcat@10.0.0-M1
purl pkg:maven/org.apache.tomcat/tomcat@10.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dxkq-jhq6-qbad
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.0.0-M1
5
url pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.1
purl pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dxkq-jhq6-qbad
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.1
6
url pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.0-M.5
purl pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.0-M.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dxkq-jhq6-qbad
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.0-M.5
7
url pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.0-M1
purl pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dxkq-jhq6-qbad
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.0-M1
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13934
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13934
1
reference_url https://lists.apache.org/thread.html/r61f411cf82488d6ec213063fc15feeeb88e31b0ca9c29652ee4f962e%40%3Cannounce.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r61f411cf82488d6ec213063fc15feeeb88e31b0ca9c29652ee4f962e%40%3Cannounce.tomcat.apache.org%3E
2
reference_url https://lists.apache.org/thread.html/ra072b1f786e7d139e86f1d1145572e0ff71cef38a96d9c6f5362aac8@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/ra072b1f786e7d139e86f1d1145572e0ff71cef38a96d9c6f5362aac8@%3Cdev.tomcat.apache.org%3E
3
reference_url https://lists.debian.org/debian-lts-announce/2020/07/msg00017.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2020/07/msg00017.html
4
reference_url https://security.netapp.com/advisory/ntap-20200724-0003
reference_id
reference_type
scores
url https://security.netapp.com/advisory/ntap-20200724-0003
5
reference_url https://usn.ubuntu.com/4596-1
reference_id
reference_type
scores
url https://usn.ubuntu.com/4596-1
6
reference_url https://www.debian.org/security/2020/dsa-4727
reference_id
reference_type
scores
url https://www.debian.org/security/2020/dsa-4727
7
reference_url https://www.oracle.com/security-alerts/cpuApr2021.html
reference_id
reference_type
scores
url https://www.oracle.com/security-alerts/cpuApr2021.html
8
reference_url https://www.oracle.com/security-alerts/cpujan2021.html
reference_id
reference_type
scores
url https://www.oracle.com/security-alerts/cpujan2021.html
9
reference_url https://www.oracle.com/security-alerts/cpujan2022.html
reference_id
reference_type
scores
url https://www.oracle.com/security-alerts/cpujan2022.html
10
reference_url https://www.oracle.com//security-alerts/cpujul2021.html
reference_id
reference_type
scores
url https://www.oracle.com//security-alerts/cpujul2021.html
11
reference_url https://www.oracle.com/security-alerts/cpuoct2020.html
reference_id
reference_type
scores
url https://www.oracle.com/security-alerts/cpuoct2020.html
12
reference_url https://security.archlinux.org/AVG-1205
reference_id AVG-1205
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1205
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-13934
reference_id CVE-2020-13934
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2020-13934
14
reference_url https://github.com/advisories/GHSA-vf77-8h7g-gghp
reference_id GHSA-vf77-8h7g-gghp
reference_type
scores
url https://github.com/advisories/GHSA-vf77-8h7g-gghp
Weaknesses
0
cwe_id 119
name Improper Restriction of Operations within the Bounds of a Memory Buffer
description The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.
1
cwe_id 476
name NULL Pointer Dereference
description A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-dxkq-jhq6-qbad