Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-wvzr-8xqt-q3ag

Summary Courier sqwebmail before 0.40.0 does not quickly drop privileges after startup in certain cases, which could allow local users to read arbitrary files.

Aliases

alias	CVE-2002-1311

Fixed_packages

url	pkg:deb/debian/courier@0.40.0-1?distro=trixie
purl	pkg:deb/debian/courier@0.40.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/courier@0.40.0-1%3Fdistro=trixie

url pkg:deb/debian/courier@0.47-4sarge5

purl pkg:deb/debian/courier@0.47-4sarge5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ukd-7aph-33ck

vulnerability	VCID-bygw-7nwb-7fgf

vulnerability	VCID-fqn9-7c2g-qbgs

vulnerability	VCID-h88k-mpda-w7es

vulnerability	VCID-rtnw-2gf1-2faa

vulnerability	VCID-tzya-qjr8-hubg

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/courier@0.47-4sarge5

url pkg:deb/debian/courier@1.0.16-3?distro=trixie

purl pkg:deb/debian/courier@1.0.16-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pkas-xrjy-jqfg

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/courier@1.0.16-3%3Fdistro=trixie

url	pkg:deb/debian/courier@1.4.1-3%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/courier@1.4.1-3%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/courier@1.4.1-3%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/courier@1.5.1-3?distro=trixie
purl	pkg:deb/debian/courier@1.5.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/courier@1.5.1-3%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/courier@0.37.3-2.5

purl pkg:deb/debian/courier@0.37.3-2.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ukd-7aph-33ck

vulnerability	VCID-55m1-hwn1-ubcd

vulnerability	VCID-62w2-tewu-bfan

vulnerability	VCID-bygw-7nwb-7fgf

vulnerability	VCID-egdc-x5de-e3bq

vulnerability	VCID-ep5r-zxpr-cbb7

vulnerability	VCID-fqn9-7c2g-qbgs

vulnerability	VCID-fwm9-kvxb-3qge

vulnerability	VCID-h88k-mpda-w7es

vulnerability	VCID-rtnw-2gf1-2faa

vulnerability	VCID-tzya-qjr8-hubg

vulnerability	VCID-uh1b-x5d6-qqet

vulnerability	VCID-wvzr-8xqt-q3ag

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/courier@0.37.3-2.5

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2002-1311

reference_id

reference_type

scores

value	0.00068
scoring_system	epss
scoring_elements	0.21146
published_at	2026-06-04T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21227
published_at	2026-06-05T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21213
published_at	2026-06-06T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.2117
published_at	2026-06-07T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21106
published_at	2026-06-08T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21116
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2002-1311

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1311
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1311

Weaknesses

Exploits

Severity_range_score null

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wvzr-8xqt-q3ag

Vulnerability Instance