Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-az2k-jzw4-fuc7
SummaryAn unspecified udev rule in the Debian fuse package in jessie before 2.9.3-15+deb8u2, in stretch before 2.9.5-1, and in sid before 2.9.5-1 sets world-writable permissions for the /dev/cuse character device, which allows local users to gain privileges via a character device in /dev, related to an ioctl.
Aliases
0
alias CVE-2016-1233
Fixed_packages
0
url pkg:deb/debian/fuse@2.9.3-15%2Bdeb8u2
purl pkg:deb/debian/fuse@2.9.3-15%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6b2e-ewue-fqap
1
vulnerability VCID-az2k-jzw4-fuc7
2
vulnerability VCID-ute9-2hqz-rfb2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.9.3-15%252Bdeb8u2
1
url pkg:deb/debian/fuse@2.9.5-1?distro=trixie
purl pkg:deb/debian/fuse@2.9.5-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.9.5-1%3Fdistro=trixie
2
url pkg:deb/debian/fuse@2.9.7-1%2Bdeb9u2
purl pkg:deb/debian/fuse@2.9.7-1%2Bdeb9u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6b2e-ewue-fqap
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.9.7-1%252Bdeb9u2
3
url pkg:deb/debian/fuse@2.9.9-5?distro=trixie
purl pkg:deb/debian/fuse@2.9.9-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.9.9-5%3Fdistro=trixie
4
url pkg:deb/debian/fuse@2.9.9-6?distro=trixie
purl pkg:deb/debian/fuse@2.9.9-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.9.9-6%3Fdistro=trixie
5
url pkg:deb/debian/fuse@2.9.9-9?distro=trixie
purl pkg:deb/debian/fuse@2.9.9-9?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.9.9-9%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/fuse@2.2.1-4sarge2
purl pkg:deb/debian/fuse@2.2.1-4sarge2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cge-7g28-k7a6
1
vulnerability VCID-4nq4-5byf-fba3
2
vulnerability VCID-6b2e-ewue-fqap
3
vulnerability VCID-a95r-bxba-eubj
4
vulnerability VCID-az2k-jzw4-fuc7
5
vulnerability VCID-cmds-kzhu-c7e4
6
vulnerability VCID-jv12-nxw2-9ya6
7
vulnerability VCID-mq1j-8ctw-kue6
8
vulnerability VCID-ute9-2hqz-rfb2
9
vulnerability VCID-wyxr-d8np-kqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.2.1-4sarge2
1
url pkg:deb/debian/fuse@2.5.3-4.4
purl pkg:deb/debian/fuse@2.5.3-4.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cge-7g28-k7a6
1
vulnerability VCID-4nq4-5byf-fba3
2
vulnerability VCID-6b2e-ewue-fqap
3
vulnerability VCID-a95r-bxba-eubj
4
vulnerability VCID-az2k-jzw4-fuc7
5
vulnerability VCID-jv12-nxw2-9ya6
6
vulnerability VCID-ute9-2hqz-rfb2
7
vulnerability VCID-wyxr-d8np-kqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.5.3-4.4
2
url pkg:deb/debian/fuse@2.5.3-4.4%2Betch1
purl pkg:deb/debian/fuse@2.5.3-4.4%2Betch1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cge-7g28-k7a6
1
vulnerability VCID-4nq4-5byf-fba3
2
vulnerability VCID-6b2e-ewue-fqap
3
vulnerability VCID-a95r-bxba-eubj
4
vulnerability VCID-az2k-jzw4-fuc7
5
vulnerability VCID-jv12-nxw2-9ya6
6
vulnerability VCID-ute9-2hqz-rfb2
7
vulnerability VCID-wyxr-d8np-kqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.5.3-4.4%252Betch1
3
url pkg:deb/debian/fuse@2.7.4-1.1%2Blenny1
purl pkg:deb/debian/fuse@2.7.4-1.1%2Blenny1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cge-7g28-k7a6
1
vulnerability VCID-4nq4-5byf-fba3
2
vulnerability VCID-6b2e-ewue-fqap
3
vulnerability VCID-a95r-bxba-eubj
4
vulnerability VCID-az2k-jzw4-fuc7
5
vulnerability VCID-jv12-nxw2-9ya6
6
vulnerability VCID-ute9-2hqz-rfb2
7
vulnerability VCID-wyxr-d8np-kqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.7.4-1.1%252Blenny1
4
url pkg:deb/debian/fuse@2.8.4-1.1
purl pkg:deb/debian/fuse@2.8.4-1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4nq4-5byf-fba3
1
vulnerability VCID-6b2e-ewue-fqap
2
vulnerability VCID-a95r-bxba-eubj
3
vulnerability VCID-az2k-jzw4-fuc7
4
vulnerability VCID-jv12-nxw2-9ya6
5
vulnerability VCID-ute9-2hqz-rfb2
6
vulnerability VCID-wyxr-d8np-kqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.8.4-1.1
5
url pkg:deb/debian/fuse@2.8.4-1.1%2Bdeb6u1
purl pkg:deb/debian/fuse@2.8.4-1.1%2Bdeb6u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4nq4-5byf-fba3
1
vulnerability VCID-6b2e-ewue-fqap
2
vulnerability VCID-a95r-bxba-eubj
3
vulnerability VCID-az2k-jzw4-fuc7
4
vulnerability VCID-jv12-nxw2-9ya6
5
vulnerability VCID-ute9-2hqz-rfb2
6
vulnerability VCID-wyxr-d8np-kqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.8.4-1.1%252Bdeb6u1
6
url pkg:deb/debian/fuse@2.9.0-2%2Bdeb7u2
purl pkg:deb/debian/fuse@2.9.0-2%2Bdeb7u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6b2e-ewue-fqap
1
vulnerability VCID-az2k-jzw4-fuc7
2
vulnerability VCID-ute9-2hqz-rfb2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.9.0-2%252Bdeb7u2
7
url pkg:deb/debian/fuse@2.9.3-15
purl pkg:deb/debian/fuse@2.9.3-15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6b2e-ewue-fqap
1
vulnerability VCID-az2k-jzw4-fuc7
2
vulnerability VCID-ute9-2hqz-rfb2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.9.3-15
8
url pkg:deb/debian/fuse@2.9.3-15%2Bdeb8u2
purl pkg:deb/debian/fuse@2.9.3-15%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6b2e-ewue-fqap
1
vulnerability VCID-az2k-jzw4-fuc7
2
vulnerability VCID-ute9-2hqz-rfb2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fuse@2.9.3-15%252Bdeb8u2
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1233.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1233.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-1233
reference_id
reference_type
scores
0
value 0.0011
scoring_system epss
scoring_elements 0.28967
published_at 2026-06-04T12:55:00Z
1
value 0.0011
scoring_system epss
scoring_elements 0.29037
published_at 2026-06-05T12:55:00Z
2
value 0.0011
scoring_system epss
scoring_elements 0.29003
published_at 2026-06-06T12:55:00Z
3
value 0.0011
scoring_system epss
scoring_elements 0.28968
published_at 2026-06-07T12:55:00Z
4
value 0.0011
scoring_system epss
scoring_elements 0.28934
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-1233
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1233
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1233
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:S/C:C/I:C/A:C
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1301011
reference_id 1301011
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1301011
Weaknesses
0
cwe_id 732
name Incorrect Permission Assignment for Critical Resource
description The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.
Exploits
Severity_range_score6.0 - 6.0
Exploitability0.5
Weighted_severity3.0
Risk_score1.5
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-az2k-jzw4-fuc7