Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-1svp-fwt6-pbey
Summary
SMTP Injection via to/from addresses
The mail package does not disallow CRLF in email addresses; an attacker can inject SMTP commands in specially crafted email addresses passed to `RCPT TO` and `MAIL FROM`.
Aliases
0
alias CVE-2015-9097
1
alias GHSA-q86f-fmqf-qrf6
2
alias OSV-131677
Fixed_packages
0
url pkg:deb/debian/ruby-mail@2.6.1%2Bdfsg1-1?distro=trixie
purl pkg:deb/debian/ruby-mail@2.6.1%2Bdfsg1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-mail@2.6.1%252Bdfsg1-1%3Fdistro=trixie
1
url pkg:deb/debian/ruby-mail@2.6.1%2Bdfsg1-1
purl pkg:deb/debian/ruby-mail@2.6.1%2Bdfsg1-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-mail@2.6.1%252Bdfsg1-1
2
url pkg:deb/debian/ruby-mail@2.7.1%2Bdfsg1-1.1?distro=trixie
purl pkg:deb/debian/ruby-mail@2.7.1%2Bdfsg1-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-mail@2.7.1%252Bdfsg1-1.1%3Fdistro=trixie
3
url pkg:deb/debian/ruby-mail@2.7.1%2Bdfsg1-2?distro=trixie
purl pkg:deb/debian/ruby-mail@2.7.1%2Bdfsg1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-mail@2.7.1%252Bdfsg1-2%3Fdistro=trixie
4
url pkg:deb/debian/ruby-mail@2.8.1%2Bdfsg1-2?distro=trixie
purl pkg:deb/debian/ruby-mail@2.8.1%2Bdfsg1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-mail@2.8.1%252Bdfsg1-2%3Fdistro=trixie
5
url pkg:deb/debian/ruby-mail@2.9.0%2Bdfsg1-1?distro=trixie
purl pkg:deb/debian/ruby-mail@2.9.0%2Bdfsg1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-mail@2.9.0%252Bdfsg1-1%3Fdistro=trixie
6
url pkg:gem/mail@2.5.5.rc1
purl pkg:gem/mail@2.5.5.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.5.5.rc1
7
url pkg:gem/mail@2.5.5
purl pkg:gem/mail@2.5.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.5.5
8
url pkg:gem/mail@2.6.6.rc1
purl pkg:gem/mail@2.6.6.rc1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.6.rc1
9
url pkg:gem/mail@2.7.0.rc1
purl pkg:gem/mail@2.7.0.rc1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.7.0.rc1
Affected_packages
0
url pkg:deb/debian/ruby-mail@2.4.4-2
purl pkg:deb/debian/ruby-mail@2.4.4-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-mail@2.4.4-2
1
url pkg:deb/debian/ruby-mail@2.5.4-3~bpo70%2B1
purl pkg:deb/debian/ruby-mail@2.5.4-3~bpo70%2B1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-mail@2.5.4-3~bpo70%252B1
2
url pkg:gem/mail@1.0.0
purl pkg:gem/mail@1.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.0.0
3
url pkg:gem/mail@1.1.0
purl pkg:gem/mail@1.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.1.0
4
url pkg:gem/mail@1.2.1
purl pkg:gem/mail@1.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.2.1
5
url pkg:gem/mail@1.2.5
purl pkg:gem/mail@1.2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.2.5
6
url pkg:gem/mail@1.2.6
purl pkg:gem/mail@1.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.2.6
7
url pkg:gem/mail@1.2.8
purl pkg:gem/mail@1.2.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.2.8
8
url pkg:gem/mail@1.2.9
purl pkg:gem/mail@1.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.2.9
9
url pkg:gem/mail@1.3.0
purl pkg:gem/mail@1.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.3.0
10
url pkg:gem/mail@1.3.1
purl pkg:gem/mail@1.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.3.1
11
url pkg:gem/mail@1.3.2
purl pkg:gem/mail@1.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.3.2
12
url pkg:gem/mail@1.3.3
purl pkg:gem/mail@1.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.3.3
13
url pkg:gem/mail@1.3.4
purl pkg:gem/mail@1.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.3.4
14
url pkg:gem/mail@1.3.5
purl pkg:gem/mail@1.3.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.3.5
15
url pkg:gem/mail@1.4.0
purl pkg:gem/mail@1.4.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.4.0
16
url pkg:gem/mail@1.4.1
purl pkg:gem/mail@1.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.4.1
17
url pkg:gem/mail@1.4.2
purl pkg:gem/mail@1.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.4.2
18
url pkg:gem/mail@1.4.3
purl pkg:gem/mail@1.4.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.4.3
19
url pkg:gem/mail@1.5.0
purl pkg:gem/mail@1.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.5.0
20
url pkg:gem/mail@1.5.1
purl pkg:gem/mail@1.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.5.1
21
url pkg:gem/mail@1.5.2
purl pkg:gem/mail@1.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.5.2
22
url pkg:gem/mail@1.5.3
purl pkg:gem/mail@1.5.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.5.3
23
url pkg:gem/mail@1.5.4
purl pkg:gem/mail@1.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.5.4
24
url pkg:gem/mail@1.6.0
purl pkg:gem/mail@1.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@1.6.0
25
url pkg:gem/mail@2.0.3
purl pkg:gem/mail@2.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.0.3
26
url pkg:gem/mail@2.0.5
purl pkg:gem/mail@2.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.0.5
27
url pkg:gem/mail@2.1.0
purl pkg:gem/mail@2.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.1.0
28
url pkg:gem/mail@2.1.1
purl pkg:gem/mail@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.1.1
29
url pkg:gem/mail@2.1.2
purl pkg:gem/mail@2.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.1.2
30
url pkg:gem/mail@2.1.3
purl pkg:gem/mail@2.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.1.3
31
url pkg:gem/mail@2.1.5
purl pkg:gem/mail@2.1.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.1.5
32
url pkg:gem/mail@2.1.5.1
purl pkg:gem/mail@2.1.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.1.5.1
33
url pkg:gem/mail@2.1.5.2
purl pkg:gem/mail@2.1.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.1.5.2
34
url pkg:gem/mail@2.1.5.3
purl pkg:gem/mail@2.1.5.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.1.5.3
35
url pkg:gem/mail@2.2.0
purl pkg:gem/mail@2.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.0
36
url pkg:gem/mail@2.2.1
purl pkg:gem/mail@2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.1
37
url pkg:gem/mail@2.2.2
purl pkg:gem/mail@2.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.2
38
url pkg:gem/mail@2.2.3
purl pkg:gem/mail@2.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.3
39
url pkg:gem/mail@2.2.4
purl pkg:gem/mail@2.2.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.4
40
url pkg:gem/mail@2.2.5
purl pkg:gem/mail@2.2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.5
41
url pkg:gem/mail@2.2.5.1
purl pkg:gem/mail@2.2.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.5.1
42
url pkg:gem/mail@2.2.5.2
purl pkg:gem/mail@2.2.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.5.2
43
url pkg:gem/mail@2.2.6
purl pkg:gem/mail@2.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.6
44
url pkg:gem/mail@2.2.6.1
purl pkg:gem/mail@2.2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.6.1
45
url pkg:gem/mail@2.2.7
purl pkg:gem/mail@2.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.7
46
url pkg:gem/mail@2.2.9
purl pkg:gem/mail@2.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.9
47
url pkg:gem/mail@2.2.9.1
purl pkg:gem/mail@2.2.9.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.9.1
48
url pkg:gem/mail@2.2.10
purl pkg:gem/mail@2.2.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.10
49
url pkg:gem/mail@2.2.11
purl pkg:gem/mail@2.2.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.11
50
url pkg:gem/mail@2.2.12
purl pkg:gem/mail@2.2.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.12
51
url pkg:gem/mail@2.2.13
purl pkg:gem/mail@2.2.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.13
52
url pkg:gem/mail@2.2.14
purl pkg:gem/mail@2.2.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-m9tp-apd1-z7c6
3
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.14
53
url pkg:gem/mail@2.2.15
purl pkg:gem/mail@2.2.15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.15
54
url pkg:gem/mail@2.2.16
purl pkg:gem/mail@2.2.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.16
55
url pkg:gem/mail@2.2.17
purl pkg:gem/mail@2.2.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.17
56
url pkg:gem/mail@2.2.18
purl pkg:gem/mail@2.2.18
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.18
57
url pkg:gem/mail@2.2.19
purl pkg:gem/mail@2.2.19
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.19
58
url pkg:gem/mail@2.2.20
purl pkg:gem/mail@2.2.20
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.2.20
59
url pkg:gem/mail@2.3.0
purl pkg:gem/mail@2.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.3.0
60
url pkg:gem/mail@2.3.2
purl pkg:gem/mail@2.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.3.2
61
url pkg:gem/mail@2.3.3
purl pkg:gem/mail@2.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.3.3
62
url pkg:gem/mail@2.4.0
purl pkg:gem/mail@2.4.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.4.0
63
url pkg:gem/mail@2.4.1
purl pkg:gem/mail@2.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.4.1
64
url pkg:gem/mail@2.4.3
purl pkg:gem/mail@2.4.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
1
vulnerability VCID-3xkv-ckqz-r3dx
2
vulnerability VCID-z8cv-3uer-pqbm
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.4.3
65
url pkg:gem/mail@2.4.4
purl pkg:gem/mail@2.4.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.4.4
66
url pkg:gem/mail@2.5.2
purl pkg:gem/mail@2.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.5.2
67
url pkg:gem/mail@2.5.3
purl pkg:gem/mail@2.5.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.5.3
68
url pkg:gem/mail@2.5.4
purl pkg:gem/mail@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.5.4
69
url pkg:gem/mail@2.5.5.rc1
purl pkg:gem/mail@2.5.5.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.5.5.rc1
70
url pkg:gem/mail@2.6.0.alpha0
purl pkg:gem/mail@2.6.0.alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.0.alpha0
71
url pkg:gem/mail@2.6.0
purl pkg:gem/mail@2.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.0
72
url pkg:gem/mail@2.6.1
purl pkg:gem/mail@2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.1
73
url pkg:gem/mail@2.6.3
purl pkg:gem/mail@2.6.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.3
74
url pkg:gem/mail@2.6.4.rc1
purl pkg:gem/mail@2.6.4.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.4.rc1
75
url pkg:gem/mail@2.6.4.rc2
purl pkg:gem/mail@2.6.4.rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.4.rc2
76
url pkg:gem/mail@2.6.4
purl pkg:gem/mail@2.6.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.4
77
url pkg:gem/mail@2.6.5.rc1
purl pkg:gem/mail@2.6.5.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.5.rc1
78
url pkg:gem/mail@2.6.5
purl pkg:gem/mail@2.6.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.6.5
79
url pkg:gem/mail@2.7.0.alpha0
purl pkg:gem/mail@2.7.0.alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svp-fwt6-pbey
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/mail@2.7.0.alpha0
References
0
reference_url http://openwall.com/lists/oss-security/2015/12/11/3
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://openwall.com/lists/oss-security/2015/12/11/3
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-9097.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-9097.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-9097
reference_id
reference_type
scores
0
value 0.01021
scoring_system epss
scoring_elements 0.77443
published_at 2026-05-15T12:55:00Z
1
value 0.01021
scoring_system epss
scoring_elements 0.77179
published_at 2026-04-02T12:55:00Z
2
value 0.01021
scoring_system epss
scoring_elements 0.77208
published_at 2026-04-04T12:55:00Z
3
value 0.01021
scoring_system epss
scoring_elements 0.77189
published_at 2026-04-07T12:55:00Z
4
value 0.01021
scoring_system epss
scoring_elements 0.77221
published_at 2026-04-08T12:55:00Z
5
value 0.01021
scoring_system epss
scoring_elements 0.7723
published_at 2026-04-09T12:55:00Z
6
value 0.01021
scoring_system epss
scoring_elements 0.77257
published_at 2026-04-11T12:55:00Z
7
value 0.01021
scoring_system epss
scoring_elements 0.77237
published_at 2026-04-12T12:55:00Z
8
value 0.01021
scoring_system epss
scoring_elements 0.77233
published_at 2026-04-13T12:55:00Z
9
value 0.01021
scoring_system epss
scoring_elements 0.77272
published_at 2026-04-16T12:55:00Z
10
value 0.01021
scoring_system epss
scoring_elements 0.77273
published_at 2026-04-18T12:55:00Z
11
value 0.01021
scoring_system epss
scoring_elements 0.77265
published_at 2026-04-21T12:55:00Z
12
value 0.01021
scoring_system epss
scoring_elements 0.77299
published_at 2026-04-24T12:55:00Z
13
value 0.01021
scoring_system epss
scoring_elements 0.77304
published_at 2026-04-26T12:55:00Z
14
value 0.01021
scoring_system epss
scoring_elements 0.77318
published_at 2026-04-29T12:55:00Z
15
value 0.01021
scoring_system epss
scoring_elements 0.77323
published_at 2026-05-05T12:55:00Z
16
value 0.01021
scoring_system epss
scoring_elements 0.77352
published_at 2026-05-07T12:55:00Z
17
value 0.01021
scoring_system epss
scoring_elements 0.77373
published_at 2026-05-09T12:55:00Z
18
value 0.01021
scoring_system epss
scoring_elements 0.77363
published_at 2026-05-11T12:55:00Z
19
value 0.01021
scoring_system epss
scoring_elements 0.77381
published_at 2026-05-12T12:55:00Z
20
value 0.01021
scoring_system epss
scoring_elements 0.77427
published_at 2026-05-14T12:55:00Z
21
value 0.01021
scoring_system epss
scoring_elements 0.77172
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-9097
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9097
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9097
4
reference_url https://github.com/advisories/GHSA-q86f-fmqf-qrf6
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-q86f-fmqf-qrf6
5
reference_url https://github.com/mikel/mail
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mikel/mail
6
reference_url https://github.com/mikel/mail/commit/72befdc4dab3e6e288ce226a7da2aa474cf5be83
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mikel/mail/commit/72befdc4dab3e6e288ce226a7da2aa474cf5be83
7
reference_url https://github.com/mikel/mail/pull/1097
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/mikel/mail/pull/1097
8
reference_url https://github.com/rubysec/ruby-advisory-db/issues/215
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/issues/215
9
reference_url https://hackerone.com/reports/137631
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements
1
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://hackerone.com/reports/137631
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2015-9097
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2015-9097
11
reference_url https://rubysec.com/advisories/mail-OSVDB-131677
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rubysec.com/advisories/mail-OSVDB-131677
12
reference_url http://www.mbsd.jp/Whitepaper/smtpi.pdf
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.mbsd.jp/Whitepaper/smtpi.pdf
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1293598
reference_id 1293598
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1293598
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 93
name Improper Neutralization of CRLF Sequences ('CRLF Injection')
description The product uses CRLF (carriage return line feeds) as a special element, e.g. to separate lines or records, but it does not neutralize or incorrectly neutralizes CRLF sequences from inputs.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 88
name Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
description The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-1svp-fwt6-pbey