Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-bpmy-uq4q-jbdg
SummaryThe SSH configuration in the Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, disables the StrictHostKeyChecking option, which allows man-in-the-middle attackers to spoof kdump servers, and obtain sensitive core information, by using an arbitrary SSH key.
Aliases
0
alias CVE-2011-3588
Fixed_packages
0
url pkg:deb/debian/kexec-tools@0?distro=trixie
purl pkg:deb/debian/kexec-tools@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kexec-tools@0%3Fdistro=trixie
1
url pkg:deb/debian/kexec-tools@1:2.0.20-2.1?distro=trixie
purl pkg:deb/debian/kexec-tools@1:2.0.20-2.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kexec-tools@1:2.0.20-2.1%3Fdistro=trixie
2
url pkg:deb/debian/kexec-tools@1:2.0.25-3%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/kexec-tools@1:2.0.25-3%2Bdeb12u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kexec-tools@1:2.0.25-3%252Bdeb12u3%3Fdistro=trixie
3
url pkg:deb/debian/kexec-tools@1:2.0.29-2?distro=trixie
purl pkg:deb/debian/kexec-tools@1:2.0.29-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kexec-tools@1:2.0.29-2%3Fdistro=trixie
4
url pkg:deb/debian/kexec-tools@1:2.0.32-3?distro=trixie
purl pkg:deb/debian/kexec-tools@1:2.0.32-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/kexec-tools@1:2.0.32-3%3Fdistro=trixie
Affected_packages
0
url pkg:rpm/redhat/kexec-tools@1.102pre-154?arch=el5
purl pkg:rpm/redhat/kexec-tools@1.102pre-154?arch=el5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bpmy-uq4q-jbdg
1
vulnerability VCID-t3ng-rmrw-v7dp
2
vulnerability VCID-zdsc-3jhz-qqfu
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kexec-tools@1.102pre-154%3Farch=el5
1
url pkg:rpm/redhat/kexec-tools@2.0.0-209?arch=el6
purl pkg:rpm/redhat/kexec-tools@2.0.0-209?arch=el6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bpmy-uq4q-jbdg
1
vulnerability VCID-t3ng-rmrw-v7dp
2
vulnerability VCID-zdsc-3jhz-qqfu
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kexec-tools@2.0.0-209%3Farch=el6
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3588.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3588.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-3588
reference_id
reference_type
scores
0
value 0.00168
scoring_system epss
scoring_elements 0.37666
published_at 2026-06-04T12:55:00Z
1
value 0.00168
scoring_system epss
scoring_elements 0.37757
published_at 2026-06-05T12:55:00Z
2
value 0.00168
scoring_system epss
scoring_elements 0.37761
published_at 2026-06-06T12:55:00Z
3
value 0.00168
scoring_system epss
scoring_elements 0.37731
published_at 2026-06-07T12:55:00Z
4
value 0.00168
scoring_system epss
scoring_elements 0.37692
published_at 2026-06-08T12:55:00Z
5
value 0.00168
scoring_system epss
scoring_elements 0.37704
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-3588
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=716439
reference_id 716439
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=716439
3
reference_url https://access.redhat.com/errata/RHSA-2011:1532
reference_id RHSA-2011:1532
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:1532
4
reference_url https://access.redhat.com/errata/RHSA-2012:0152
reference_id RHSA-2012:0152
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:0152
Weaknesses
Exploits
Severity_range_scorenull
Exploitability0.5
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-bpmy-uq4q-jbdg