Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-avqj-8btm-gfdd

Summary fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.

Aliases

alias	CVE-2006-5867

Fixed_packages

url	pkg:deb/debian/fetchmail@6.3.6-1?distro=trixie
purl	pkg:deb/debian/fetchmail@6.3.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.3.6-1%3Fdistro=trixie

url pkg:deb/debian/fetchmail@6.3.6-1

purl pkg:deb/debian/fetchmail@6.3.6-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3mtj-rbe4-bygx

vulnerability	VCID-5p19-bhcy-fffn

vulnerability	VCID-8cwf-bk7m-h3eg

vulnerability	VCID-debr-wchc-h7a4

vulnerability	VCID-k2vh-hcbd-8ubq

vulnerability	VCID-n6na-y3zc-eqa2

vulnerability	VCID-pqsn-4an8-zfgu

vulnerability	VCID-wvv8-4977-7yga

vulnerability	VCID-z6hd-xps2-sbbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.3.6-1

url pkg:deb/debian/fetchmail@6.4.16-4%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/fetchmail@6.4.16-4%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4zfz-95n5-8ugz

vulnerability	VCID-td28-7qem-kfep

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.4.16-4%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/fetchmail@6.4.37-1?distro=trixie

purl pkg:deb/debian/fetchmail@6.4.37-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-td28-7qem-kfep

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.4.37-1%3Fdistro=trixie

url pkg:deb/debian/fetchmail@6.4.39-1?distro=trixie

purl pkg:deb/debian/fetchmail@6.4.39-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-td28-7qem-kfep

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.4.39-1%3Fdistro=trixie

url	pkg:deb/debian/fetchmail@6.6.3-3?distro=trixie
purl	pkg:deb/debian/fetchmail@6.6.3-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.6.3-3%3Fdistro=trixie

url	pkg:ebuild/net-mail/fetchmail@6.3.6
purl	pkg:ebuild/net-mail/fetchmail@6.3.6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-mail/fetchmail@6.3.6

Affected_packages

url pkg:deb/debian/fetchmail@4.3.9-1

purl pkg:deb/debian/fetchmail@4.3.9-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1rab-kh4g-wfgy

vulnerability	VCID-2bpq-s1jb-j3d1

vulnerability	VCID-3mtj-rbe4-bygx

vulnerability	VCID-5mtd-9vs2-mkcp

vulnerability	VCID-5p19-bhcy-fffn

vulnerability	VCID-8cwf-bk7m-h3eg

vulnerability	VCID-avqj-8btm-gfdd

vulnerability	VCID-debr-wchc-h7a4

vulnerability	VCID-dwqz-6p7y-9fax

vulnerability	VCID-fdpq-937n-63hu

vulnerability	VCID-jw6n-vfc4-nqhh

vulnerability	VCID-k2vh-hcbd-8ubq

vulnerability	VCID-n6na-y3zc-eqa2

vulnerability	VCID-pqsn-4an8-zfgu

vulnerability	VCID-ukt2-jxtg-6ubv

vulnerability	VCID-vm5f-essz-9fc2

vulnerability	VCID-wvv8-4977-7yga

vulnerability	VCID-xcf8-t38u-6qhg

vulnerability	VCID-z6hd-xps2-sbbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@4.3.9-1

url pkg:deb/debian/fetchmail@4.6.4-1.1

purl pkg:deb/debian/fetchmail@4.6.4-1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1rab-kh4g-wfgy

vulnerability	VCID-2bpq-s1jb-j3d1

vulnerability	VCID-3mtj-rbe4-bygx

vulnerability	VCID-5mtd-9vs2-mkcp

vulnerability	VCID-5p19-bhcy-fffn

vulnerability	VCID-8cwf-bk7m-h3eg

vulnerability	VCID-avqj-8btm-gfdd

vulnerability	VCID-debr-wchc-h7a4

vulnerability	VCID-dwqz-6p7y-9fax

vulnerability	VCID-fdpq-937n-63hu

vulnerability	VCID-jw6n-vfc4-nqhh

vulnerability	VCID-k2vh-hcbd-8ubq

vulnerability	VCID-n6na-y3zc-eqa2

vulnerability	VCID-pqsn-4an8-zfgu

vulnerability	VCID-ukt2-jxtg-6ubv

vulnerability	VCID-vm5f-essz-9fc2

vulnerability	VCID-wvv8-4977-7yga

vulnerability	VCID-xcf8-t38u-6qhg

vulnerability	VCID-z6hd-xps2-sbbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@4.6.4-1.1

url pkg:deb/debian/fetchmail@5.3.3-3

purl pkg:deb/debian/fetchmail@5.3.3-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1rab-kh4g-wfgy

vulnerability	VCID-2bpq-s1jb-j3d1

vulnerability	VCID-3mtj-rbe4-bygx

vulnerability	VCID-5mtd-9vs2-mkcp

vulnerability	VCID-5p19-bhcy-fffn

vulnerability	VCID-8cwf-bk7m-h3eg

vulnerability	VCID-avqj-8btm-gfdd

vulnerability	VCID-debr-wchc-h7a4

vulnerability	VCID-dwqz-6p7y-9fax

vulnerability	VCID-fdpq-937n-63hu

vulnerability	VCID-jw6n-vfc4-nqhh

vulnerability	VCID-k2vh-hcbd-8ubq

vulnerability	VCID-n6na-y3zc-eqa2

vulnerability	VCID-pqsn-4an8-zfgu

vulnerability	VCID-ukt2-jxtg-6ubv

vulnerability	VCID-vm5f-essz-9fc2

vulnerability	VCID-wvv8-4977-7yga

vulnerability	VCID-xcf8-t38u-6qhg

vulnerability	VCID-z6hd-xps2-sbbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@5.3.3-3

url pkg:deb/debian/fetchmail@5.9.11-6.2

purl pkg:deb/debian/fetchmail@5.9.11-6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1rab-kh4g-wfgy

vulnerability	VCID-2bpq-s1jb-j3d1

vulnerability	VCID-3mtj-rbe4-bygx

vulnerability	VCID-5mtd-9vs2-mkcp

vulnerability	VCID-5p19-bhcy-fffn

vulnerability	VCID-8cwf-bk7m-h3eg

vulnerability	VCID-avqj-8btm-gfdd

vulnerability	VCID-debr-wchc-h7a4

vulnerability	VCID-dwqz-6p7y-9fax

vulnerability	VCID-fdpq-937n-63hu

vulnerability	VCID-jw6n-vfc4-nqhh

vulnerability	VCID-k2vh-hcbd-8ubq

vulnerability	VCID-n6na-y3zc-eqa2

vulnerability	VCID-pqsn-4an8-zfgu

vulnerability	VCID-ukt2-jxtg-6ubv

vulnerability	VCID-vm5f-essz-9fc2

vulnerability	VCID-wvv8-4977-7yga

vulnerability	VCID-xcf8-t38u-6qhg

vulnerability	VCID-z6hd-xps2-sbbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@5.9.11-6.2

url pkg:deb/debian/fetchmail@6.2.5-12sarge5

purl pkg:deb/debian/fetchmail@6.2.5-12sarge5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2bpq-s1jb-j3d1

vulnerability	VCID-3mtj-rbe4-bygx

vulnerability	VCID-5mtd-9vs2-mkcp

vulnerability	VCID-5p19-bhcy-fffn

vulnerability	VCID-8cwf-bk7m-h3eg

vulnerability	VCID-avqj-8btm-gfdd

vulnerability	VCID-debr-wchc-h7a4

vulnerability	VCID-fdpq-937n-63hu

vulnerability	VCID-k2vh-hcbd-8ubq

vulnerability	VCID-n6na-y3zc-eqa2

vulnerability	VCID-pqsn-4an8-zfgu

vulnerability	VCID-ukt2-jxtg-6ubv

vulnerability	VCID-wvv8-4977-7yga

vulnerability	VCID-xcf8-t38u-6qhg

vulnerability	VCID-z6hd-xps2-sbbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.2.5-12sarge5

url pkg:rpm/redhat/fetchmail@5.9.0-21.7.3.el2.1?arch=4

purl pkg:rpm/redhat/fetchmail@5.9.0-21.7.3.el2.1?arch=4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5mtd-9vs2-mkcp

vulnerability	VCID-avqj-8btm-gfdd

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fetchmail@5.9.0-21.7.3.el2.1%3Farch=4

url pkg:rpm/redhat/fetchmail@6.2.0-3.el3?arch=3

purl pkg:rpm/redhat/fetchmail@6.2.0-3.el3?arch=3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5mtd-9vs2-mkcp

vulnerability	VCID-avqj-8btm-gfdd

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fetchmail@6.2.0-3.el3%3Farch=3

url pkg:rpm/redhat/fetchmail@6.2.5-6.el4?arch=5

purl pkg:rpm/redhat/fetchmail@6.2.5-6.el4?arch=5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5mtd-9vs2-mkcp

vulnerability	VCID-avqj-8btm-gfdd

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fetchmail@6.2.5-6.el4%3Farch=5

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5867.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5867.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-5867

reference_id

reference_type

scores

value	0.0669
scoring_system	epss
scoring_elements	0.91406
published_at	2026-06-04T12:55:00Z

value	0.0669
scoring_system	epss
scoring_elements	0.91419
published_at	2026-06-05T12:55:00Z

value	0.0669
scoring_system	epss
scoring_elements	0.91421
published_at	2026-06-06T12:55:00Z

value	0.0669
scoring_system	epss
scoring_elements	0.91418
published_at	2026-06-07T12:55:00Z

value	0.0669
scoring_system	epss
scoring_elements	0.91414
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-5867

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5867
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5867

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=221984
reference_id	221984
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=221984

reference_url	https://security.gentoo.org/glsa/200701-13
reference_id	GLSA-200701-13
reference_type
scores
url	https://security.gentoo.org/glsa/200701-13

reference_url	https://access.redhat.com/errata/RHSA-2007:0018
reference_id	RHSA-2007:0018
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0018

reference_url	https://usn.ubuntu.com/405-1/
reference_id	USN-405-1
reference_type
scores
url	https://usn.ubuntu.com/405-1/

Weaknesses

Exploits

Severity_range_score null

Exploitability 0.5

Weighted_severity 0.1

Risk_score 0.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-avqj-8btm-gfdd

Vulnerability Instance