Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-42wu-h26v-sfcr

Summary virtuoso-opensource: openlink virtuoso-opensource: Denial of Service via crafted SQL statements

Aliases

alias	CVE-2024-57636

Fixed_packages

url	pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie
purl	pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-0.2%3Fdistro=trixie

url	pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2
purl	pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2

url	pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-2%3Fdistro=trixie

url	pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie
purl	pkg:deb/debian/virtuoso-opensource@7.2.12%2Bdfsg-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.12%252Bdfsg-4%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/virtuoso-opensource@7.2.5.1%2Bdfsg1-0.1

purl pkg:deb/debian/virtuoso-opensource@7.2.5.1%2Bdfsg1-0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13gn-umxm-zyee

vulnerability	VCID-1dfg-rrgf-tfae

vulnerability	VCID-24hf-v93u-bfep

vulnerability	VCID-2gra-f2ux-xfav

vulnerability	VCID-35mc-pp8q-9kcm

vulnerability	VCID-3nkb-csxf-mbfx

vulnerability	VCID-42wu-h26v-sfcr

vulnerability	VCID-4h41-e66q-buf6

vulnerability	VCID-4umc-d7t6-k3gt

vulnerability	VCID-5uzw-md6q-f7eq

vulnerability	VCID-6tev-xv6q-wber

vulnerability	VCID-7ch2-uxrf-9qar

vulnerability	VCID-7qbh-sg6g-97du

vulnerability	VCID-7vuh-n1xt-27fe

vulnerability	VCID-7zx8-7zn9-m3a4

vulnerability	VCID-8213-ra9q-5ue6

vulnerability	VCID-9a8t-s3bh-kbd2

vulnerability	VCID-9sb1-dq23-ukcp

vulnerability	VCID-9wss-qfe5-syga

vulnerability	VCID-a65p-475d-tbcr

vulnerability	VCID-a99c-wvrv-ffhy

vulnerability	VCID-aab4-nhpg-d3ga

vulnerability	VCID-ad9v-kn1r-cucp

vulnerability	VCID-aq7t-wa3r-mfd1

vulnerability	VCID-bkc3-pd7d-kbet

vulnerability	VCID-bskw-u9ab-8yb8

vulnerability	VCID-e6v7-dj39-k7du

vulnerability	VCID-edaf-am39-bud8

vulnerability	VCID-emxr-eb22-rybj

vulnerability	VCID-erpb-hauj-vfgr

vulnerability	VCID-femd-tkwb-kqak

vulnerability	VCID-gne3-6be3-77gq

vulnerability	VCID-gtet-vg9e-1fbq

vulnerability	VCID-h1cr-nwhj-27bu

vulnerability	VCID-h9xa-xk8p-ayh9

vulnerability	VCID-jm13-kd7f-c3hf

vulnerability	VCID-jrxj-7d62-t3bb

vulnerability	VCID-k57e-vwum-quan

vulnerability	VCID-kv58-6nc5-9ydj

vulnerability	VCID-kxy2-x9x2-83bb

vulnerability	VCID-m3gs-dyjf-p3gb

vulnerability	VCID-mdht-mdxw-h7ad

vulnerability	VCID-mmkg-vaj8-syd6

vulnerability	VCID-n83z-r2xg-dqf7

vulnerability	VCID-nrwp-tfx4-fyae

vulnerability	VCID-nucg-h4km-2fa3

vulnerability	VCID-p2sp-ka77-8kca

vulnerability	VCID-pckj-ybmc-zkgm

vulnerability	VCID-peas-ws9s-nqcd

vulnerability	VCID-qkkn-w363-4kas

vulnerability	VCID-quz4-x5ej-9qe2

vulnerability	VCID-r231-jet6-1ug3

vulnerability	VCID-rc1c-5qax-1bfe

vulnerability	VCID-rvr1-5ade-yqgh

vulnerability	VCID-svpe-ytjd-gkdf

vulnerability	VCID-u63q-3uzf-jya9

vulnerability	VCID-v1c8-6yd9-vfgq

vulnerability	VCID-v7pt-d8es-bkbt

vulnerability	VCID-xka9-vtmy-2yej

vulnerability	VCID-xrs1-ddad-m3hc

vulnerability	VCID-yjq5-ysg8-qbdv

vulnerability	VCID-zdep-1ufy-rubq

vulnerability	VCID-zq3v-e45z-t7fb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.5.1%252Bdfsg1-0.1

url pkg:deb/debian/virtuoso-opensource@7.2.5.1%2Bdfsg1-0.1?distro=trixie

purl pkg:deb/debian/virtuoso-opensource@7.2.5.1%2Bdfsg1-0.1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13gn-umxm-zyee

vulnerability	VCID-1dfg-rrgf-tfae

vulnerability	VCID-24hf-v93u-bfep

vulnerability	VCID-2gra-f2ux-xfav

vulnerability	VCID-35mc-pp8q-9kcm

vulnerability	VCID-3nkb-csxf-mbfx

vulnerability	VCID-42wu-h26v-sfcr

vulnerability	VCID-4h41-e66q-buf6

vulnerability	VCID-4umc-d7t6-k3gt

vulnerability	VCID-5uzw-md6q-f7eq

vulnerability	VCID-6tev-xv6q-wber

vulnerability	VCID-7ch2-uxrf-9qar

vulnerability	VCID-7qbh-sg6g-97du

vulnerability	VCID-7vuh-n1xt-27fe

vulnerability	VCID-7zx8-7zn9-m3a4

vulnerability	VCID-8213-ra9q-5ue6

vulnerability	VCID-9a8t-s3bh-kbd2

vulnerability	VCID-9sb1-dq23-ukcp

vulnerability	VCID-9wss-qfe5-syga

vulnerability	VCID-a65p-475d-tbcr

vulnerability	VCID-a99c-wvrv-ffhy

vulnerability	VCID-aab4-nhpg-d3ga

vulnerability	VCID-ad9v-kn1r-cucp

vulnerability	VCID-aq7t-wa3r-mfd1

vulnerability	VCID-bkc3-pd7d-kbet

vulnerability	VCID-bskw-u9ab-8yb8

vulnerability	VCID-e6v7-dj39-k7du

vulnerability	VCID-edaf-am39-bud8

vulnerability	VCID-emxr-eb22-rybj

vulnerability	VCID-erpb-hauj-vfgr

vulnerability	VCID-femd-tkwb-kqak

vulnerability	VCID-gne3-6be3-77gq

vulnerability	VCID-gtet-vg9e-1fbq

vulnerability	VCID-h1cr-nwhj-27bu

vulnerability	VCID-h9xa-xk8p-ayh9

vulnerability	VCID-jm13-kd7f-c3hf

vulnerability	VCID-jrxj-7d62-t3bb

vulnerability	VCID-k57e-vwum-quan

vulnerability	VCID-kv58-6nc5-9ydj

vulnerability	VCID-kxy2-x9x2-83bb

vulnerability	VCID-m3gs-dyjf-p3gb

vulnerability	VCID-mdht-mdxw-h7ad

vulnerability	VCID-mmkg-vaj8-syd6

vulnerability	VCID-n83z-r2xg-dqf7

vulnerability	VCID-nrwp-tfx4-fyae

vulnerability	VCID-nucg-h4km-2fa3

vulnerability	VCID-p2sp-ka77-8kca

vulnerability	VCID-pckj-ybmc-zkgm

vulnerability	VCID-peas-ws9s-nqcd

vulnerability	VCID-qkkn-w363-4kas

vulnerability	VCID-quz4-x5ej-9qe2

vulnerability	VCID-r231-jet6-1ug3

vulnerability	VCID-rc1c-5qax-1bfe

vulnerability	VCID-rvr1-5ade-yqgh

vulnerability	VCID-svpe-ytjd-gkdf

vulnerability	VCID-u63q-3uzf-jya9

vulnerability	VCID-v1c8-6yd9-vfgq

vulnerability	VCID-v7pt-d8es-bkbt

vulnerability	VCID-xka9-vtmy-2yej

vulnerability	VCID-xrs1-ddad-m3hc

vulnerability	VCID-yjq5-ysg8-qbdv

vulnerability	VCID-zdep-1ufy-rubq

vulnerability	VCID-zq3v-e45z-t7fb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.5.1%252Bdfsg1-0.1%3Fdistro=trixie

url pkg:deb/debian/virtuoso-opensource@7.2.5.1%2Bdfsg1-0.3

purl pkg:deb/debian/virtuoso-opensource@7.2.5.1%2Bdfsg1-0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13gn-umxm-zyee

vulnerability	VCID-1dfg-rrgf-tfae

vulnerability	VCID-24hf-v93u-bfep

vulnerability	VCID-2gra-f2ux-xfav

vulnerability	VCID-35mc-pp8q-9kcm

vulnerability	VCID-3nkb-csxf-mbfx

vulnerability	VCID-42wu-h26v-sfcr

vulnerability	VCID-4h41-e66q-buf6

vulnerability	VCID-4umc-d7t6-k3gt

vulnerability	VCID-5uzw-md6q-f7eq

vulnerability	VCID-6tev-xv6q-wber

vulnerability	VCID-7ch2-uxrf-9qar

vulnerability	VCID-7qbh-sg6g-97du

vulnerability	VCID-7vuh-n1xt-27fe

vulnerability	VCID-7zx8-7zn9-m3a4

vulnerability	VCID-8213-ra9q-5ue6

vulnerability	VCID-9a8t-s3bh-kbd2

vulnerability	VCID-9sb1-dq23-ukcp

vulnerability	VCID-9wss-qfe5-syga

vulnerability	VCID-a65p-475d-tbcr

vulnerability	VCID-a99c-wvrv-ffhy

vulnerability	VCID-aab4-nhpg-d3ga

vulnerability	VCID-ad9v-kn1r-cucp

vulnerability	VCID-aq7t-wa3r-mfd1

vulnerability	VCID-bkc3-pd7d-kbet

vulnerability	VCID-bskw-u9ab-8yb8

vulnerability	VCID-e6v7-dj39-k7du

vulnerability	VCID-edaf-am39-bud8

vulnerability	VCID-emxr-eb22-rybj

vulnerability	VCID-erpb-hauj-vfgr

vulnerability	VCID-femd-tkwb-kqak

vulnerability	VCID-gne3-6be3-77gq

vulnerability	VCID-gtet-vg9e-1fbq

vulnerability	VCID-h1cr-nwhj-27bu

vulnerability	VCID-h9xa-xk8p-ayh9

vulnerability	VCID-jm13-kd7f-c3hf

vulnerability	VCID-jrxj-7d62-t3bb

vulnerability	VCID-k57e-vwum-quan

vulnerability	VCID-kv58-6nc5-9ydj

vulnerability	VCID-kxy2-x9x2-83bb

vulnerability	VCID-m3gs-dyjf-p3gb

vulnerability	VCID-mdht-mdxw-h7ad

vulnerability	VCID-mmkg-vaj8-syd6

vulnerability	VCID-n83z-r2xg-dqf7

vulnerability	VCID-nrwp-tfx4-fyae

vulnerability	VCID-nucg-h4km-2fa3

vulnerability	VCID-p2sp-ka77-8kca

vulnerability	VCID-pckj-ybmc-zkgm

vulnerability	VCID-peas-ws9s-nqcd

vulnerability	VCID-qkkn-w363-4kas

vulnerability	VCID-quz4-x5ej-9qe2

vulnerability	VCID-r231-jet6-1ug3

vulnerability	VCID-rc1c-5qax-1bfe

vulnerability	VCID-rvr1-5ade-yqgh

vulnerability	VCID-svpe-ytjd-gkdf

vulnerability	VCID-u63q-3uzf-jya9

vulnerability	VCID-v1c8-6yd9-vfgq

vulnerability	VCID-v7pt-d8es-bkbt

vulnerability	VCID-xka9-vtmy-2yej

vulnerability	VCID-xrs1-ddad-m3hc

vulnerability	VCID-yjq5-ysg8-qbdv

vulnerability	VCID-zdep-1ufy-rubq

vulnerability	VCID-zq3v-e45z-t7fb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.5.1%252Bdfsg1-0.3

url pkg:deb/debian/virtuoso-opensource@7.2.5.1%2Bdfsg1-0.3?distro=trixie

purl pkg:deb/debian/virtuoso-opensource@7.2.5.1%2Bdfsg1-0.3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13gn-umxm-zyee

vulnerability	VCID-1dfg-rrgf-tfae

vulnerability	VCID-24hf-v93u-bfep

vulnerability	VCID-2gra-f2ux-xfav

vulnerability	VCID-35mc-pp8q-9kcm

vulnerability	VCID-3nkb-csxf-mbfx

vulnerability	VCID-42wu-h26v-sfcr

vulnerability	VCID-4h41-e66q-buf6

vulnerability	VCID-4umc-d7t6-k3gt

vulnerability	VCID-5uzw-md6q-f7eq

vulnerability	VCID-6tev-xv6q-wber

vulnerability	VCID-7ch2-uxrf-9qar

vulnerability	VCID-7qbh-sg6g-97du

vulnerability	VCID-7vuh-n1xt-27fe

vulnerability	VCID-7zx8-7zn9-m3a4

vulnerability	VCID-8213-ra9q-5ue6

vulnerability	VCID-9a8t-s3bh-kbd2

vulnerability	VCID-9sb1-dq23-ukcp

vulnerability	VCID-9wss-qfe5-syga

vulnerability	VCID-a65p-475d-tbcr

vulnerability	VCID-a99c-wvrv-ffhy

vulnerability	VCID-aab4-nhpg-d3ga

vulnerability	VCID-ad9v-kn1r-cucp

vulnerability	VCID-aq7t-wa3r-mfd1

vulnerability	VCID-bkc3-pd7d-kbet

vulnerability	VCID-bskw-u9ab-8yb8

vulnerability	VCID-e6v7-dj39-k7du

vulnerability	VCID-edaf-am39-bud8

vulnerability	VCID-emxr-eb22-rybj

vulnerability	VCID-erpb-hauj-vfgr

vulnerability	VCID-femd-tkwb-kqak

vulnerability	VCID-gne3-6be3-77gq

vulnerability	VCID-gtet-vg9e-1fbq

vulnerability	VCID-h1cr-nwhj-27bu

vulnerability	VCID-h9xa-xk8p-ayh9

vulnerability	VCID-jm13-kd7f-c3hf

vulnerability	VCID-jrxj-7d62-t3bb

vulnerability	VCID-k57e-vwum-quan

vulnerability	VCID-kv58-6nc5-9ydj

vulnerability	VCID-kxy2-x9x2-83bb

vulnerability	VCID-m3gs-dyjf-p3gb

vulnerability	VCID-mdht-mdxw-h7ad

vulnerability	VCID-mmkg-vaj8-syd6

vulnerability	VCID-n83z-r2xg-dqf7

vulnerability	VCID-nrwp-tfx4-fyae

vulnerability	VCID-nucg-h4km-2fa3

vulnerability	VCID-p2sp-ka77-8kca

vulnerability	VCID-pckj-ybmc-zkgm

vulnerability	VCID-peas-ws9s-nqcd

vulnerability	VCID-qkkn-w363-4kas

vulnerability	VCID-quz4-x5ej-9qe2

vulnerability	VCID-r231-jet6-1ug3

vulnerability	VCID-rc1c-5qax-1bfe

vulnerability	VCID-rvr1-5ade-yqgh

vulnerability	VCID-svpe-ytjd-gkdf

vulnerability	VCID-u63q-3uzf-jya9

vulnerability	VCID-v1c8-6yd9-vfgq

vulnerability	VCID-v7pt-d8es-bkbt

vulnerability	VCID-xka9-vtmy-2yej

vulnerability	VCID-xrs1-ddad-m3hc

vulnerability	VCID-yjq5-ysg8-qbdv

vulnerability	VCID-zdep-1ufy-rubq

vulnerability	VCID-zq3v-e45z-t7fb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtuoso-opensource@7.2.5.1%252Bdfsg1-0.3%3Fdistro=trixie

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57636.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-57636.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-57636

reference_id

reference_type

scores

value	0.00289
scoring_system	epss
scoring_elements	0.5267
published_at	2026-06-09T12:55:00Z

value	0.00289
scoring_system	epss
scoring_elements	0.52673
published_at	2026-06-07T12:55:00Z

value	0.00289
scoring_system	epss
scoring_elements	0.52646
published_at	2026-06-08T12:55:00Z

value	0.00289
scoring_system	epss
scoring_elements	0.52685
published_at	2026-06-05T12:55:00Z

value	0.00289
scoring_system	epss
scoring_elements	0.52691
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-57636

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57636
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-57636

reference_url

https://github.com/openlink/virtuoso-opensource/issues/1194

reference_id

1194

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-14T15:34:56Z/

url

https://github.com/openlink/virtuoso-opensource/issues/1194

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2337544
reference_id	2337544
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2337544

Weaknesses

cwe_id	20
name	Improper Input Validation
description	The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Exploits

Severity_range_score 7.5 - 7.5

Exploitability 0.5

Weighted_severity 6.8

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-42wu-h26v-sfcr

Vulnerability Instance