Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-pshb-b8z8-gqhm
SummarySquid: Squid: Information disclosure via improper input validation in ICP traffic
Aliases
0
alias CVE-2026-33515
Fixed_packages
0
url pkg:deb/debian/squid@7.5-1
purl pkg:deb/debian/squid@7.5-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@7.5-1
1
url pkg:deb/debian/squid@7.5-1?distro=trixie
purl pkg:deb/debian/squid@7.5-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@7.5-1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/squid@4.13-10%2Bdeb11u3
purl pkg:deb/debian/squid@4.13-10%2Bdeb11u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2x42-wmes-2uen
1
vulnerability VCID-5tpw-u7cg-hqd7
2
vulnerability VCID-7sua-wuyu-cqby
3
vulnerability VCID-7xgk-cg81-yyht
4
vulnerability VCID-b4wm-kgwv-nkhj
5
vulnerability VCID-h4af-cyxg-juf8
6
vulnerability VCID-j8vv-ysfd-a7c6
7
vulnerability VCID-pshb-b8z8-gqhm
8
vulnerability VCID-qyjc-znbd-dub6
9
vulnerability VCID-rv56-tjvg-bbbc
10
vulnerability VCID-ssxr-73gq-kbaf
11
vulnerability VCID-t3w4-62ms-9ybz
12
vulnerability VCID-yhrb-q44p-c3bk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@4.13-10%252Bdeb11u3
1
url pkg:deb/debian/squid@4.13-10%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/squid@4.13-10%2Bdeb11u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-7sua-wuyu-cqby
2
vulnerability VCID-pshb-b8z8-gqhm
3
vulnerability VCID-qyjc-znbd-dub6
4
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@4.13-10%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/squid@5.7-2%2Bdeb12u5
purl pkg:deb/debian/squid@5.7-2%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-7sua-wuyu-cqby
2
vulnerability VCID-pshb-b8z8-gqhm
3
vulnerability VCID-qyjc-znbd-dub6
4
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@5.7-2%252Bdeb12u5
3
url pkg:deb/debian/squid@5.7-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/squid@5.7-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-7sua-wuyu-cqby
2
vulnerability VCID-pshb-b8z8-gqhm
3
vulnerability VCID-qyjc-znbd-dub6
4
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@5.7-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/squid@6.13-2%2Bdeb13u1
purl pkg:deb/debian/squid@6.13-2%2Bdeb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-pshb-b8z8-gqhm
2
vulnerability VCID-qyjc-znbd-dub6
3
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@6.13-2%252Bdeb13u1
5
url pkg:deb/debian/squid@6.13-2%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/squid@6.13-2%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5tpw-u7cg-hqd7
1
vulnerability VCID-pshb-b8z8-gqhm
2
vulnerability VCID-qyjc-znbd-dub6
3
vulnerability VCID-rv56-tjvg-bbbc
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/squid@6.13-2%252Bdeb13u1%3Fdistro=trixie
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33515.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33515.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-33515
reference_id
reference_type
scores
0
value 0.00044
scoring_system epss
scoring_elements 0.13884
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-33515
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33515
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33515
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/squid-cache/squid/pull/2220
reference_id 2220
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-26T14:19:33Z/
url https://github.com/squid-cache/squid/pull/2220
5
reference_url https://github.com/squid-cache/squid/pull/2220#discussion_r2727683637
reference_id 2220#discussion_r2727683637
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-26T14:19:33Z/
url https://github.com/squid-cache/squid/pull/2220#discussion_r2727683637
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2451581
reference_id 2451581
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2451581
7
reference_url https://github.com/squid-cache/squid/commit/8138e909d2058d4401e0ad49b583afaec912b165
reference_id 8138e909d2058d4401e0ad49b583afaec912b165
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-26T14:19:33Z/
url https://github.com/squid-cache/squid/commit/8138e909d2058d4401e0ad49b583afaec912b165
8
reference_url https://github.com/squid-cache/squid/security/advisories/GHSA-84p4-hcx7-jj7c
reference_id GHSA-84p4-hcx7-jj7c
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-26T14:19:33Z/
url https://github.com/squid-cache/squid/security/advisories/GHSA-84p4-hcx7-jj7c
9
reference_url https://usn.ubuntu.com/8157-1/
reference_id USN-8157-1
reference_type
scores
url https://usn.ubuntu.com/8157-1/
Weaknesses
0
cwe_id 125
name Out-of-bounds Read
description The product reads data past the end, or before the beginning, of the intended buffer.
1
cwe_id 1289
name Improper Validation of Unsafe Equivalence in Input
description The product receives an input value that is used as a resource identifier or other type of reference, but it does not validate or incorrectly validates that the input is equivalent to a potentially-unsafe value.
Exploits
Severity_range_score5.3 - 7.5
Exploitability0.5
Weighted_severity4.8
Risk_score2.4
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-pshb-b8z8-gqhm