Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-d7n8-eavu-vkht
Summarygrub2 allowed attackers with access to the grub shell to access files on the encrypted disks.
Aliases
0
alias CVE-2024-49504
Fixed_packages
0
url pkg:deb/debian/grub2@0?distro=trixie
purl pkg:deb/debian/grub2@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@0%3Fdistro=trixie
1
url pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie
purl pkg:deb/debian/grub2@2.06-3~deb11u6?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5uf3-bjjn-4yhs
1
vulnerability VCID-63az-nzfv-87dy
2
vulnerability VCID-87pm-7byk-mkfz
3
vulnerability VCID-9q3c-4v67-c7fz
4
vulnerability VCID-a242-cfbc-xbfq
5
vulnerability VCID-azuc-n4jp-s3a7
6
vulnerability VCID-caax-p6ww-q3cr
7
vulnerability VCID-f88s-9msx-qfch
8
vulnerability VCID-gmjr-7b1u-8ken
9
vulnerability VCID-h3e9-k7cw-67ap
10
vulnerability VCID-haj1-qfjs-4fcu
11
vulnerability VCID-jbkd-x4ew-z3dg
12
vulnerability VCID-prj5-6mew-jyhd
13
vulnerability VCID-q666-ufxn-gfff
14
vulnerability VCID-r1ah-pq5x-1qaw
15
vulnerability VCID-rhww-thm7-d3cc
16
vulnerability VCID-rr1u-b6ve-jkfx
17
vulnerability VCID-rtwx-xfw9-vqhw
18
vulnerability VCID-sy6f-vt1r-13b1
19
vulnerability VCID-t313-9zsm-5bht
20
vulnerability VCID-tbrj-j3nu-5uea
21
vulnerability VCID-us9a-vzsz-53fb
22
vulnerability VCID-uy1z-w2rh-r3gh
23
vulnerability VCID-v3by-5wqc-jkba
24
vulnerability VCID-vrwk-rzjg-vkht
25
vulnerability VCID-wgc1-q5qk-xqcu
26
vulnerability VCID-wjwe-5519-9qay
27
vulnerability VCID-yu49-aeax-6fbp
28
vulnerability VCID-yvdp-1mmc-t3h9
29
vulnerability VCID-zjyz-8gmy-4fa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-3~deb11u6%3Fdistro=trixie
2
url pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/grub2@2.06-13%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-63az-nzfv-87dy
1
vulnerability VCID-gmjr-7b1u-8ken
2
vulnerability VCID-jbkd-x4ew-z3dg
3
vulnerability VCID-rtwx-xfw9-vqhw
4
vulnerability VCID-t313-9zsm-5bht
5
vulnerability VCID-uy1z-w2rh-r3gh
6
vulnerability VCID-wgc1-q5qk-xqcu
7
vulnerability VCID-zjyz-8gmy-4fa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.06-13%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/grub2@2.12-9%2Bdeb13u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-63az-nzfv-87dy
1
vulnerability VCID-gmjr-7b1u-8ken
2
vulnerability VCID-jbkd-x4ew-z3dg
3
vulnerability VCID-rtwx-xfw9-vqhw
4
vulnerability VCID-t313-9zsm-5bht
5
vulnerability VCID-uy1z-w2rh-r3gh
6
vulnerability VCID-wgc1-q5qk-xqcu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.12-9%252Bdeb13u2%3Fdistro=trixie
4
url pkg:deb/debian/grub2@2.14-2?distro=trixie
purl pkg:deb/debian/grub2@2.14-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/grub2@2.14-2%3Fdistro=trixie
Affected_packages
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-49504.json
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-49504.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-49504
reference_id
reference_type
scores
0
value 0.00091
scoring_system epss
scoring_elements 0.25642
published_at 2026-06-09T12:55:00Z
1
value 0.00091
scoring_system epss
scoring_elements 0.25742
published_at 2026-06-06T12:55:00Z
2
value 0.00091
scoring_system epss
scoring_elements 0.25695
published_at 2026-06-07T12:55:00Z
3
value 0.00091
scoring_system epss
scoring_elements 0.25635
published_at 2026-06-08T12:55:00Z
4
value 0.00091
scoring_system epss
scoring_elements 0.25751
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-49504
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2325913
reference_id 2325913
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2325913
4
reference_url https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-49504
reference_id show_bug.cgi?id=CVE-2024-49504
reference_type
scores
0
value 7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-13T18:31:10Z/
url https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-49504
Weaknesses
0
cwe_id 276
name Incorrect Default Permissions
description During installation, installed file permissions are set to allow anyone to modify those files.
Exploits
Severity_range_score6.2 - 8.4
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-d7n8-eavu-vkht