Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-ysd9-636j-dkay

Summary An out-of-bounds write vulnerability exists in the BrainVisionMarker Parsing functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .vmrk file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

Aliases

alias	CVE-2024-23305

Fixed_packages

url	pkg:deb/debian/biosig@2.6.0-1?distro=trixie
purl	pkg:deb/debian/biosig@2.6.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@2.6.0-1%3Fdistro=trixie

url pkg:deb/debian/biosig@3.9.0-1

purl pkg:deb/debian/biosig@3.9.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cy-t8he-rfam

vulnerability	VCID-25ka-1vtj-akec

vulnerability	VCID-4c21-bu1z-gfa3

vulnerability	VCID-5yws-vf2e-g7ea

vulnerability	VCID-77yh-sjcr-g7ew

vulnerability	VCID-7jgd-du4c-sbd9

vulnerability	VCID-9c5h-3zvz-8yaf

vulnerability	VCID-avy4-npdf-1fac

vulnerability	VCID-bz75-v3p7-zyfx

vulnerability	VCID-ccn2-ja4k-93da

vulnerability	VCID-ct4f-kxhg-6yaj

vulnerability	VCID-erf7-mvc1-3ud5

vulnerability	VCID-es1h-jc37-kfaj

vulnerability	VCID-f5kw-jf91-pfhv

vulnerability	VCID-h3m9-et77-63cr

vulnerability	VCID-kjq6-mknn-zkc8

vulnerability	VCID-n7qk-y7wk-2qay

vulnerability	VCID-n9t6-f7cp-4qea

vulnerability	VCID-nays-6gvv-vydf

vulnerability	VCID-pjxk-jkhf-3kht

vulnerability	VCID-pvjx-yb22-8bdj

vulnerability	VCID-q15c-qb7u-8kap

vulnerability	VCID-qkga-9ghw-myhb

vulnerability	VCID-rjn3-66t6-duga

vulnerability	VCID-s8ms-2ajs-9bdw

vulnerability	VCID-sewz-kc8g-hfc8

vulnerability	VCID-sjxx-rpbd-2ud4

vulnerability	VCID-spbn-21cs-y3g8

vulnerability	VCID-sw6e-8t33-n7f4

vulnerability	VCID-uh56-6uz5-jyg1

vulnerability	VCID-ws3r-dtag-2kcb

vulnerability	VCID-y7b7-5qph-w3hq

vulnerability	VCID-ysjd-drmj-2qe4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@3.9.0-1

url pkg:deb/debian/biosig@3.9.0-1?distro=trixie

purl pkg:deb/debian/biosig@3.9.0-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cy-t8he-rfam

vulnerability	VCID-25ka-1vtj-akec

vulnerability	VCID-4c21-bu1z-gfa3

vulnerability	VCID-5yws-vf2e-g7ea

vulnerability	VCID-77yh-sjcr-g7ew

vulnerability	VCID-7jgd-du4c-sbd9

vulnerability	VCID-9c5h-3zvz-8yaf

vulnerability	VCID-avy4-npdf-1fac

vulnerability	VCID-bz75-v3p7-zyfx

vulnerability	VCID-ccn2-ja4k-93da

vulnerability	VCID-ct4f-kxhg-6yaj

vulnerability	VCID-erf7-mvc1-3ud5

vulnerability	VCID-es1h-jc37-kfaj

vulnerability	VCID-f5kw-jf91-pfhv

vulnerability	VCID-h3m9-et77-63cr

vulnerability	VCID-kjq6-mknn-zkc8

vulnerability	VCID-n7qk-y7wk-2qay

vulnerability	VCID-n9t6-f7cp-4qea

vulnerability	VCID-nays-6gvv-vydf

vulnerability	VCID-pjxk-jkhf-3kht

vulnerability	VCID-pvjx-yb22-8bdj

vulnerability	VCID-q15c-qb7u-8kap

vulnerability	VCID-qkga-9ghw-myhb

vulnerability	VCID-rjn3-66t6-duga

vulnerability	VCID-s8ms-2ajs-9bdw

vulnerability	VCID-sewz-kc8g-hfc8

vulnerability	VCID-sjxx-rpbd-2ud4

vulnerability	VCID-spbn-21cs-y3g8

vulnerability	VCID-sw6e-8t33-n7f4

vulnerability	VCID-uh56-6uz5-jyg1

vulnerability	VCID-ws3r-dtag-2kcb

vulnerability	VCID-y7b7-5qph-w3hq

vulnerability	VCID-ysjd-drmj-2qe4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@3.9.0-1%3Fdistro=trixie

url	pkg:deb/debian/biosig@3.9.5-1?distro=trixie
purl	pkg:deb/debian/biosig@3.9.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@3.9.5-1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/biosig@2.1.2-4

purl pkg:deb/debian/biosig@2.1.2-4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cy-t8he-rfam

vulnerability	VCID-25ka-1vtj-akec

vulnerability	VCID-2md4-431b-2fh4

vulnerability	VCID-3zrc-8yrv-b3fb

vulnerability	VCID-4c21-bu1z-gfa3

vulnerability	VCID-5yws-vf2e-g7ea

vulnerability	VCID-77yh-sjcr-g7ew

vulnerability	VCID-7jgd-du4c-sbd9

vulnerability	VCID-9c5h-3zvz-8yaf

vulnerability	VCID-avy4-npdf-1fac

vulnerability	VCID-bz75-v3p7-zyfx

vulnerability	VCID-ccn2-ja4k-93da

vulnerability	VCID-ct4f-kxhg-6yaj

vulnerability	VCID-erf7-mvc1-3ud5

vulnerability	VCID-es1h-jc37-kfaj

vulnerability	VCID-f5kw-jf91-pfhv

vulnerability	VCID-fam7-973s-b7bn

vulnerability	VCID-h3m9-et77-63cr

vulnerability	VCID-h9gj-mgcs-8yak

vulnerability	VCID-kjq6-mknn-zkc8

vulnerability	VCID-n7qk-y7wk-2qay

vulnerability	VCID-n9t6-f7cp-4qea

vulnerability	VCID-nays-6gvv-vydf

vulnerability	VCID-nfk8-x5q4-x7h3

vulnerability	VCID-pjxk-jkhf-3kht

vulnerability	VCID-pvjx-yb22-8bdj

vulnerability	VCID-q15c-qb7u-8kap

vulnerability	VCID-q7dz-z3u1-j3hx

vulnerability	VCID-qkga-9ghw-myhb

vulnerability	VCID-rjn3-66t6-duga

vulnerability	VCID-s8ms-2ajs-9bdw

vulnerability	VCID-sewz-kc8g-hfc8

vulnerability	VCID-sjxx-rpbd-2ud4

vulnerability	VCID-spbn-21cs-y3g8

vulnerability	VCID-sw6e-8t33-n7f4

vulnerability	VCID-uh56-6uz5-jyg1

vulnerability	VCID-ws3r-dtag-2kcb

vulnerability	VCID-xhxn-uspj-w7ak

vulnerability	VCID-y7b7-5qph-w3hq

vulnerability	VCID-ysd9-636j-dkay

vulnerability	VCID-ysjd-drmj-2qe4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@2.1.2-4

url pkg:deb/debian/biosig@2.1.2-4?distro=trixie

purl pkg:deb/debian/biosig@2.1.2-4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cy-t8he-rfam

vulnerability	VCID-25ka-1vtj-akec

vulnerability	VCID-2md4-431b-2fh4

vulnerability	VCID-3zrc-8yrv-b3fb

vulnerability	VCID-4c21-bu1z-gfa3

vulnerability	VCID-5yws-vf2e-g7ea

vulnerability	VCID-77yh-sjcr-g7ew

vulnerability	VCID-7jgd-du4c-sbd9

vulnerability	VCID-9c5h-3zvz-8yaf

vulnerability	VCID-avy4-npdf-1fac

vulnerability	VCID-bz75-v3p7-zyfx

vulnerability	VCID-ccn2-ja4k-93da

vulnerability	VCID-ct4f-kxhg-6yaj

vulnerability	VCID-erf7-mvc1-3ud5

vulnerability	VCID-es1h-jc37-kfaj

vulnerability	VCID-f5kw-jf91-pfhv

vulnerability	VCID-fam7-973s-b7bn

vulnerability	VCID-h3m9-et77-63cr

vulnerability	VCID-h9gj-mgcs-8yak

vulnerability	VCID-kjq6-mknn-zkc8

vulnerability	VCID-n7qk-y7wk-2qay

vulnerability	VCID-n9t6-f7cp-4qea

vulnerability	VCID-nays-6gvv-vydf

vulnerability	VCID-nfk8-x5q4-x7h3

vulnerability	VCID-pjxk-jkhf-3kht

vulnerability	VCID-pvjx-yb22-8bdj

vulnerability	VCID-q15c-qb7u-8kap

vulnerability	VCID-q7dz-z3u1-j3hx

vulnerability	VCID-qkga-9ghw-myhb

vulnerability	VCID-rjn3-66t6-duga

vulnerability	VCID-s8ms-2ajs-9bdw

vulnerability	VCID-sewz-kc8g-hfc8

vulnerability	VCID-sjxx-rpbd-2ud4

vulnerability	VCID-spbn-21cs-y3g8

vulnerability	VCID-sw6e-8t33-n7f4

vulnerability	VCID-uh56-6uz5-jyg1

vulnerability	VCID-ws3r-dtag-2kcb

vulnerability	VCID-xhxn-uspj-w7ak

vulnerability	VCID-y7b7-5qph-w3hq

vulnerability	VCID-ysd9-636j-dkay

vulnerability	VCID-ysjd-drmj-2qe4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@2.1.2-4%3Fdistro=trixie

url pkg:deb/debian/biosig@2.5.0-1

purl pkg:deb/debian/biosig@2.5.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cy-t8he-rfam

vulnerability	VCID-25ka-1vtj-akec

vulnerability	VCID-2md4-431b-2fh4

vulnerability	VCID-3zrc-8yrv-b3fb

vulnerability	VCID-4c21-bu1z-gfa3

vulnerability	VCID-5yws-vf2e-g7ea

vulnerability	VCID-77yh-sjcr-g7ew

vulnerability	VCID-7jgd-du4c-sbd9

vulnerability	VCID-9c5h-3zvz-8yaf

vulnerability	VCID-avy4-npdf-1fac

vulnerability	VCID-bz75-v3p7-zyfx

vulnerability	VCID-ccn2-ja4k-93da

vulnerability	VCID-ct4f-kxhg-6yaj

vulnerability	VCID-erf7-mvc1-3ud5

vulnerability	VCID-es1h-jc37-kfaj

vulnerability	VCID-f5kw-jf91-pfhv

vulnerability	VCID-fam7-973s-b7bn

vulnerability	VCID-h3m9-et77-63cr

vulnerability	VCID-h9gj-mgcs-8yak

vulnerability	VCID-kjq6-mknn-zkc8

vulnerability	VCID-n7qk-y7wk-2qay

vulnerability	VCID-n9t6-f7cp-4qea

vulnerability	VCID-nays-6gvv-vydf

vulnerability	VCID-nfk8-x5q4-x7h3

vulnerability	VCID-pjxk-jkhf-3kht

vulnerability	VCID-pvjx-yb22-8bdj

vulnerability	VCID-q15c-qb7u-8kap

vulnerability	VCID-q7dz-z3u1-j3hx

vulnerability	VCID-qkga-9ghw-myhb

vulnerability	VCID-rjn3-66t6-duga

vulnerability	VCID-s8ms-2ajs-9bdw

vulnerability	VCID-sewz-kc8g-hfc8

vulnerability	VCID-sjxx-rpbd-2ud4

vulnerability	VCID-spbn-21cs-y3g8

vulnerability	VCID-sw6e-8t33-n7f4

vulnerability	VCID-uh56-6uz5-jyg1

vulnerability	VCID-ws3r-dtag-2kcb

vulnerability	VCID-xhxn-uspj-w7ak

vulnerability	VCID-y7b7-5qph-w3hq

vulnerability	VCID-ysd9-636j-dkay

vulnerability	VCID-ysjd-drmj-2qe4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@2.5.0-1

url pkg:deb/debian/biosig@2.5.0-1?distro=trixie

purl pkg:deb/debian/biosig@2.5.0-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14cy-t8he-rfam

vulnerability	VCID-25ka-1vtj-akec

vulnerability	VCID-2md4-431b-2fh4

vulnerability	VCID-3zrc-8yrv-b3fb

vulnerability	VCID-4c21-bu1z-gfa3

vulnerability	VCID-5yws-vf2e-g7ea

vulnerability	VCID-77yh-sjcr-g7ew

vulnerability	VCID-7jgd-du4c-sbd9

vulnerability	VCID-9c5h-3zvz-8yaf

vulnerability	VCID-avy4-npdf-1fac

vulnerability	VCID-bz75-v3p7-zyfx

vulnerability	VCID-ccn2-ja4k-93da

vulnerability	VCID-ct4f-kxhg-6yaj

vulnerability	VCID-erf7-mvc1-3ud5

vulnerability	VCID-es1h-jc37-kfaj

vulnerability	VCID-f5kw-jf91-pfhv

vulnerability	VCID-fam7-973s-b7bn

vulnerability	VCID-h3m9-et77-63cr

vulnerability	VCID-h9gj-mgcs-8yak

vulnerability	VCID-kjq6-mknn-zkc8

vulnerability	VCID-n7qk-y7wk-2qay

vulnerability	VCID-n9t6-f7cp-4qea

vulnerability	VCID-nays-6gvv-vydf

vulnerability	VCID-nfk8-x5q4-x7h3

vulnerability	VCID-pjxk-jkhf-3kht

vulnerability	VCID-pvjx-yb22-8bdj

vulnerability	VCID-q15c-qb7u-8kap

vulnerability	VCID-q7dz-z3u1-j3hx

vulnerability	VCID-qkga-9ghw-myhb

vulnerability	VCID-rjn3-66t6-duga

vulnerability	VCID-s8ms-2ajs-9bdw

vulnerability	VCID-sewz-kc8g-hfc8

vulnerability	VCID-sjxx-rpbd-2ud4

vulnerability	VCID-spbn-21cs-y3g8

vulnerability	VCID-sw6e-8t33-n7f4

vulnerability	VCID-uh56-6uz5-jyg1

vulnerability	VCID-ws3r-dtag-2kcb

vulnerability	VCID-xhxn-uspj-w7ak

vulnerability	VCID-y7b7-5qph-w3hq

vulnerability	VCID-ysd9-636j-dkay

vulnerability	VCID-ysjd-drmj-2qe4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@2.5.0-1%3Fdistro=trixie

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-23305

reference_id

reference_type

scores

value	0.00815
scoring_system	epss
scoring_elements	0.74684
published_at	2026-06-06T12:55:00Z

value	0.00815
scoring_system	epss
scoring_elements	0.74655
published_at	2026-06-08T12:55:00Z

value	0.00815
scoring_system	epss
scoring_elements	0.74681
published_at	2026-06-09T12:55:00Z

value	0.00815
scoring_system	epss
scoring_elements	0.74679
published_at	2026-06-05T12:55:00Z

value	0.00815
scoring_system	epss
scoring_elements	0.74672
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-23305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-23305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-23305

reference_url

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1918

reference_id

TALOS-2024-1918

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-07-26T18:28:05Z/

url

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1918

Weaknesses

cwe_id	787
name	Out-of-bounds Write
description	The product writes data past the end, or before the beginning, of the intended buffer.

Exploits

Severity_range_score 9.8 - 9.8

Exploitability 0.5

Weighted_severity 5.9

Risk_score 3.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ysd9-636j-dkay

Vulnerability Instance