Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-49qz-y2rr-rkfx
SummaryIn libgraphite2 in graphite2 1.3.11, a NULL pointer dereference vulnerability was found in Segment.cpp during a dumbRendering operation, which may allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ttf file.
Aliases
0
alias CVE-2018-7999
Fixed_packages
0
url pkg:deb/debian/graphite2@1.3.11-2?distro=trixie
purl pkg:deb/debian/graphite2@1.3.11-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.3.11-2%3Fdistro=trixie
1
url pkg:deb/debian/graphite2@1.3.13-7
purl pkg:deb/debian/graphite2@1.3.13-7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.3.13-7
2
url pkg:deb/debian/graphite2@1.3.14-1?distro=trixie
purl pkg:deb/debian/graphite2@1.3.14-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-uffx-1e7f-ybav
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.3.14-1%3Fdistro=trixie
3
url pkg:deb/debian/graphite2@1.3.14-2?distro=trixie
purl pkg:deb/debian/graphite2@1.3.14-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-uffx-1e7f-ybav
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.3.14-2%3Fdistro=trixie
4
url pkg:deb/debian/graphite2@1.3.14-13?distro=trixie
purl pkg:deb/debian/graphite2@1.3.14-13?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-uffx-1e7f-ybav
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.3.14-13%3Fdistro=trixie
5
url pkg:deb/debian/graphite2@1.3.15-2?distro=trixie
purl pkg:deb/debian/graphite2@1.3.15-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.3.15-2%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/graphite2@1.2.4-3
purl pkg:deb/debian/graphite2@1.2.4-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3uny-z4bs-9bfk
1
vulnerability VCID-49qz-y2rr-rkfx
2
vulnerability VCID-4hgx-k5jn-ckeu
3
vulnerability VCID-4r11-gv5n-rbhb
4
vulnerability VCID-6pr4-1zfj-9ydj
5
vulnerability VCID-86p5-m5xh-wba9
6
vulnerability VCID-8hfq-xxg6-tue8
7
vulnerability VCID-9hcm-h8uk-xygz
8
vulnerability VCID-9ksn-fq5j-jkhz
9
vulnerability VCID-a5ee-c6f4-tufu
10
vulnerability VCID-abde-jm4w-5yde
11
vulnerability VCID-ecjy-9yqg-d7g5
12
vulnerability VCID-fxjs-kgb3-6bb7
13
vulnerability VCID-hqnu-aq9h-gkb4
14
vulnerability VCID-jubn-vjus-h3e8
15
vulnerability VCID-kcpz-uwq4-skf4
16
vulnerability VCID-ksda-d24x-8bcf
17
vulnerability VCID-njra-xv9f-ffck
18
vulnerability VCID-ppw9-56ha-2bhm
19
vulnerability VCID-s874-n3jb-23h1
20
vulnerability VCID-uh5h-t12y-h3b1
21
vulnerability VCID-v6sk-vcxm-dudy
22
vulnerability VCID-wd34-8uw6-2uh4
23
vulnerability VCID-x3k8-ym18-sffm
24
vulnerability VCID-xmkv-47hn-43ck
25
vulnerability VCID-yssr-7m7d-b7fh
26
vulnerability VCID-zakg-k4hk-fyhm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.2.4-3
1
url pkg:deb/debian/graphite2@1.3.6-1~deb7u1
purl pkg:deb/debian/graphite2@1.3.6-1~deb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3uny-z4bs-9bfk
1
vulnerability VCID-49qz-y2rr-rkfx
2
vulnerability VCID-4hgx-k5jn-ckeu
3
vulnerability VCID-4r11-gv5n-rbhb
4
vulnerability VCID-6pr4-1zfj-9ydj
5
vulnerability VCID-86p5-m5xh-wba9
6
vulnerability VCID-8hfq-xxg6-tue8
7
vulnerability VCID-9hcm-h8uk-xygz
8
vulnerability VCID-a5ee-c6f4-tufu
9
vulnerability VCID-abde-jm4w-5yde
10
vulnerability VCID-fxjs-kgb3-6bb7
11
vulnerability VCID-jubn-vjus-h3e8
12
vulnerability VCID-kcpz-uwq4-skf4
13
vulnerability VCID-ksda-d24x-8bcf
14
vulnerability VCID-njra-xv9f-ffck
15
vulnerability VCID-ppw9-56ha-2bhm
16
vulnerability VCID-s874-n3jb-23h1
17
vulnerability VCID-uh5h-t12y-h3b1
18
vulnerability VCID-v6sk-vcxm-dudy
19
vulnerability VCID-wd34-8uw6-2uh4
20
vulnerability VCID-xmkv-47hn-43ck
21
vulnerability VCID-yssr-7m7d-b7fh
22
vulnerability VCID-zakg-k4hk-fyhm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.3.6-1~deb7u1
2
url pkg:deb/debian/graphite2@1.3.10-1~deb8u1
purl pkg:deb/debian/graphite2@1.3.10-1~deb8u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-49qz-y2rr-rkfx
1
vulnerability VCID-6pr4-1zfj-9ydj
2
vulnerability VCID-8hfq-xxg6-tue8
3
vulnerability VCID-abde-jm4w-5yde
4
vulnerability VCID-njra-xv9f-ffck
5
vulnerability VCID-ppw9-56ha-2bhm
6
vulnerability VCID-uh5h-t12y-h3b1
7
vulnerability VCID-zakg-k4hk-fyhm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.3.10-1~deb8u1
3
url pkg:deb/debian/graphite2@1.3.10-1
purl pkg:deb/debian/graphite2@1.3.10-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-49qz-y2rr-rkfx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphite2@1.3.10-1
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7999.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7999.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-7999
reference_id
reference_type
scores
0
value 0.00205
scoring_system epss
scoring_elements 0.42569
published_at 2026-06-04T12:55:00Z
1
value 0.00205
scoring_system epss
scoring_elements 0.42642
published_at 2026-06-05T12:55:00Z
2
value 0.00205
scoring_system epss
scoring_elements 0.42653
published_at 2026-06-06T12:55:00Z
3
value 0.00205
scoring_system epss
scoring_elements 0.42626
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-7999
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7999
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7999
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1554380
reference_id 1554380
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1554380
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892590
reference_id 892590
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892590
6
reference_url https://usn.ubuntu.com/5657-1/
reference_id USN-5657-1
reference_type
scores
url https://usn.ubuntu.com/5657-1/
Weaknesses
0
cwe_id 476
name NULL Pointer Dereference
description A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
Exploits
Severity_range_score5.5 - 8.8
Exploitability0.5
Weighted_severity7.9
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-49qz-y2rr-rkfx