Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-6sdv-wm7w-kbd5

Summary

Aliases

alias	CVE-2019-9924

Fixed_packages

url	pkg:deb/debian/bash@4.4-1?distro=trixie
purl	pkg:deb/debian/bash@4.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.4-1%3Fdistro=trixie

url pkg:deb/debian/bash@4.4-5

purl pkg:deb/debian/bash@4.4-5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.4-5

url pkg:deb/debian/bash@5.1-2%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/bash@5.1-2%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ccw7-5c23-bfcp

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@5.1-2%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/bash@5.2.15-2?distro=trixie
purl	pkg:deb/debian/bash@5.2.15-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@5.2.15-2%3Fdistro=trixie

url	pkg:deb/debian/bash@5.2.37-2?distro=trixie
purl	pkg:deb/debian/bash@5.2.37-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@5.2.37-2%3Fdistro=trixie

url	pkg:deb/debian/bash@5.3-3?distro=trixie
purl	pkg:deb/debian/bash@5.3-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@5.3-3%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/bash@2.01.1-4

purl pkg:deb/debian/bash@2.01.1-4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-7rp9-3b3v-83hq

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

vulnerability	VCID-pmds-1qrb-87br

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.01.1-4

url pkg:deb/debian/bash@2.01.1-4.1

purl pkg:deb/debian/bash@2.01.1-4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-7rp9-3b3v-83hq

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

vulnerability	VCID-pmds-1qrb-87br

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.01.1-4.1

url pkg:deb/debian/bash@2.03-6

purl pkg:deb/debian/bash@2.03-6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-7rp9-3b3v-83hq

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

vulnerability	VCID-pmds-1qrb-87br

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.03-6

url pkg:deb/debian/bash@2.05a-11

purl pkg:deb/debian/bash@2.05a-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-7rp9-3b3v-83hq

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

vulnerability	VCID-pmds-1qrb-87br

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.05a-11

url pkg:deb/debian/bash@2.05b-2-26

purl pkg:deb/debian/bash@2.05b-2-26

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-7rp9-3b3v-83hq

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

vulnerability	VCID-pmds-1qrb-87br

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.05b-2-26

url pkg:deb/debian/bash@3.1dfsg-8

purl pkg:deb/debian/bash@3.1dfsg-8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-7rp9-3b3v-83hq

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

vulnerability	VCID-pmds-1qrb-87br

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@3.1dfsg-8

url pkg:deb/debian/bash@3.2-4

purl pkg:deb/debian/bash@3.2-4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-7rp9-3b3v-83hq

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

vulnerability	VCID-pmds-1qrb-87br

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@3.2-4

url pkg:deb/debian/bash@4.1-3

purl pkg:deb/debian/bash@4.1-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-7rp9-3b3v-83hq

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.1-3

url pkg:deb/debian/bash@4.1-3%2Bdeb6u2

purl pkg:deb/debian/bash@4.1-3%2Bdeb6u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-7rp9-3b3v-83hq

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.1-3%252Bdeb6u2

url pkg:deb/debian/bash@4.2%2Bdfsg-0.1%2Bdeb7u3

purl pkg:deb/debian/bash@4.2%2Bdfsg-0.1%2Bdeb7u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-3n27-ddbb-2uc4

vulnerability	VCID-3nzd-713w-qygu

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-c5br-pkm3-v7a2

vulnerability	VCID-d5ak-9k7x-8yew

vulnerability	VCID-fdzr-4k2w-8uer

vulnerability	VCID-hbrj-cf36-wkh7

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-p9zw-cggw-tkff

vulnerability	VCID-pddx-ctd3-6bbd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.2%252Bdfsg-0.1%252Bdeb7u3

url pkg:deb/debian/bash@4.3-11

purl pkg:deb/debian/bash@4.3-11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-pddx-ctd3-6bbd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.3-11

url pkg:deb/debian/bash@4.3-11%2Bdeb8u1

purl pkg:deb/debian/bash@4.3-11%2Bdeb8u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ant-qsbm-37d9

vulnerability	VCID-6sdv-wm7w-kbd5

vulnerability	VCID-6u87-8gdp-kff5

vulnerability	VCID-9rdp-azhv-63fd

vulnerability	VCID-jkzr-5ga8-1kh1

vulnerability	VCID-pddx-ctd3-6bbd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.3-11%252Bdeb8u1

url pkg:rpm/redhat/bash@4.2.46-30?arch=el7_4

purl pkg:rpm/redhat/bash@4.2.46-30?arch=el7_4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sdv-wm7w-kbd5

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bash@4.2.46-30%3Farch=el7_4

url pkg:rpm/redhat/bash@4.2.46-32?arch=el7_6

purl pkg:rpm/redhat/bash@4.2.46-32?arch=el7_6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sdv-wm7w-kbd5

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bash@4.2.46-32%3Farch=el7_6

url pkg:rpm/redhat/bash@4.2.46-34?arch=el7

purl pkg:rpm/redhat/bash@4.2.46-34?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sdv-wm7w-kbd5

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bash@4.2.46-34%3Farch=el7

url pkg:rpm/redhat/bash@4.2.46-34?arch=el7_7

purl pkg:rpm/redhat/bash@4.2.46-34?arch=el7_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sdv-wm7w-kbd5

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bash@4.2.46-34%3Farch=el7_7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9924.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9924.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-9924

reference_id

reference_type

scores

value	0.00319
scoring_system	epss
scoring_elements	0.55424
published_at	2026-06-11T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.55545
published_at	2026-06-12T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.5556
published_at	2026-06-13T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.55547
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-9924

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9924
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9924

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1691774
reference_id	1691774
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1691774

reference_url	https://access.redhat.com/errata/RHSA-2020:1113
reference_id	RHSA-2020:1113
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1113

reference_url	https://access.redhat.com/errata/RHSA-2020:3474
reference_id	RHSA-2020:3474
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3474

reference_url	https://access.redhat.com/errata/RHSA-2020:3592
reference_id	RHSA-2020:3592
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3592

reference_url	https://access.redhat.com/errata/RHSA-2020:3803
reference_id	RHSA-2020:3803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3803

reference_url	https://usn.ubuntu.com/4058-1/
reference_id	USN-4058-1
reference_type
scores
url	https://usn.ubuntu.com/4058-1/

reference_url	https://usn.ubuntu.com/4058-2/
reference_id	USN-4058-2
reference_type
scores
url	https://usn.ubuntu.com/4058-2/

Weaknesses

cwe_id	138
name	Improper Neutralization of Special Elements
description	The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as control elements or syntactic markers when they are sent to a downstream component.

Exploits

Severity_range_score 7.0 - 7.8

Exploitability 0.5

Weighted_severity 7.0

Risk_score 3.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6sdv-wm7w-kbd5

Vulnerability Instance