Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-3e3c-zxg5-tbap

Summary

Aliases

alias	CVE-2021-28861

Fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1s56-pnpq-wyee

vulnerability	VCID-1wxt-38d4-syfe

vulnerability	VCID-3tc9-52hj-3fag

vulnerability	VCID-4uj7-kjcc-bygq

vulnerability	VCID-bu2x-a43h-zkd5

vulnerability	VCID-dkxh-d7ub-9baz

vulnerability	VCID-e3n6-car5-g7bt

vulnerability	VCID-fggj-3rj4-fqcb

vulnerability	VCID-g993-xrdj-cugh

vulnerability	VCID-ga4c-5r7f-xycv

vulnerability	VCID-gfdp-7nqv-zqbv

vulnerability	VCID-ht1k-gap4-2keg

vulnerability	VCID-je2m-h8kf-qff3

vulnerability	VCID-jv9r-eg18-vfef

vulnerability	VCID-mbs7-xkjr-7yg1

vulnerability	VCID-mctk-hs85-yfb8

vulnerability	VCID-v5d3-c884-6qfc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u4%3Fdistro=trixie

url	pkg:deb/debian/pypy3@7.3.10%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/pypy3@7.3.10%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.10%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1wxt-38d4-syfe

vulnerability	VCID-3tc9-52hj-3fag

vulnerability	VCID-4uj7-kjcc-bygq

vulnerability	VCID-6137-18w7-hqap

vulnerability	VCID-6vcy-cv68-akar

vulnerability	VCID-a8ut-q93v-abcd

vulnerability	VCID-bu2x-a43h-zkd5

vulnerability	VCID-c8mc-81eh-ufes

vulnerability	VCID-d597-qumz-qkbn

vulnerability	VCID-e3n6-car5-g7bt

vulnerability	VCID-fmay-3szm-yfgv

vulnerability	VCID-fq73-mggs-wfde

vulnerability	VCID-g993-xrdj-cugh

vulnerability	VCID-ga4c-5r7f-xycv

vulnerability	VCID-gfdp-7nqv-zqbv

vulnerability	VCID-ht1k-gap4-2keg

vulnerability	VCID-huaj-nmge-kuaj

vulnerability	VCID-je2m-h8kf-qff3

vulnerability	VCID-jv9r-eg18-vfef

vulnerability	VCID-k3um-zh86-abas

vulnerability	VCID-kh9y-m5cm-sfh8

vulnerability	VCID-kx7z-47rq-uudg

vulnerability	VCID-mbs7-xkjr-7yg1

vulnerability	VCID-mctk-hs85-yfb8

vulnerability	VCID-qmpp-js6p-bub6

vulnerability	VCID-ujxv-3kht-uuaw

vulnerability	VCID-v5d3-c884-6qfc

vulnerability	VCID-yrdj-bce6-hkc4

vulnerability	VCID-yz72-pvqh-xucs

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1wxt-38d4-syfe

vulnerability	VCID-3tc9-52hj-3fag

vulnerability	VCID-4uj7-kjcc-bygq

vulnerability	VCID-6137-18w7-hqap

vulnerability	VCID-6vcy-cv68-akar

vulnerability	VCID-a8ut-q93v-abcd

vulnerability	VCID-bu2x-a43h-zkd5

vulnerability	VCID-c8mc-81eh-ufes

vulnerability	VCID-d597-qumz-qkbn

vulnerability	VCID-e3n6-car5-g7bt

vulnerability	VCID-fmay-3szm-yfgv

vulnerability	VCID-fq73-mggs-wfde

vulnerability	VCID-g993-xrdj-cugh

vulnerability	VCID-ga4c-5r7f-xycv

vulnerability	VCID-gfdp-7nqv-zqbv

vulnerability	VCID-ht1k-gap4-2keg

vulnerability	VCID-huaj-nmge-kuaj

vulnerability	VCID-je2m-h8kf-qff3

vulnerability	VCID-jv9r-eg18-vfef

vulnerability	VCID-k3um-zh86-abas

vulnerability	VCID-kh9y-m5cm-sfh8

vulnerability	VCID-kx7z-47rq-uudg

vulnerability	VCID-mbs7-xkjr-7yg1

vulnerability	VCID-mctk-hs85-yfb8

vulnerability	VCID-qmpp-js6p-bub6

vulnerability	VCID-ujxv-3kht-uuaw

vulnerability	VCID-v5d3-c884-6qfc

vulnerability	VCID-yrdj-bce6-hkc4

vulnerability	VCID-yz72-pvqh-xucs

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

url pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie

purl pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1wxt-38d4-syfe

vulnerability	VCID-4uj7-kjcc-bygq

vulnerability	VCID-6137-18w7-hqap

vulnerability	VCID-bu2x-a43h-zkd5

vulnerability	VCID-d597-qumz-qkbn

vulnerability	VCID-e3n6-car5-g7bt

vulnerability	VCID-g993-xrdj-cugh

vulnerability	VCID-gfdp-7nqv-zqbv

vulnerability	VCID-ht1k-gap4-2keg

vulnerability	VCID-huaj-nmge-kuaj

vulnerability	VCID-je2m-h8kf-qff3

vulnerability	VCID-jv9r-eg18-vfef

vulnerability	VCID-k3um-zh86-abas

vulnerability	VCID-kx7z-47rq-uudg

vulnerability	VCID-mbs7-xkjr-7yg1

vulnerability	VCID-mctk-hs85-yfb8

vulnerability	VCID-ujxv-3kht-uuaw

vulnerability	VCID-v5d3-c884-6qfc

vulnerability	VCID-yrdj-bce6-hkc4

vulnerability	VCID-yz72-pvqh-xucs

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie

url	pkg:deb/debian/pypy3@7.3.23%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/pypy3@7.3.23%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.23%252Bdfsg-1%3Fdistro=trixie

url	pkg:deb/debian/python3.11@3.11.0~b4-1?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.0~b4-1?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.0~b4-1%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u7?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u7?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u7%3Fdistro=bookworm

url	pkg:deb/debian/python3.9@3.9.2-1?distro=bullseye
purl	pkg:deb/debian/python3.9@3.9.2-1?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1%3Fdistro=bullseye

url	pkg:deb/debian/python3.9@3.9.2-1%2Bdeb11u2?distro=bullseye
purl	pkg:deb/debian/python3.9@3.9.2-1%2Bdeb11u2?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1%252Bdeb11u2%3Fdistro=bullseye

url	pkg:ebuild/dev-lang/python@3.8.15_p3
purl	pkg:ebuild/dev-lang/python@3.8.15_p3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.8.15_p3

url	pkg:ebuild/dev-lang/python@3.9.15_p3
purl	pkg:ebuild/dev-lang/python@3.9.15_p3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.9.15_p3

url	pkg:ebuild/dev-lang/python@3.10.8_p3
purl	pkg:ebuild/dev-lang/python@3.10.8_p3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.10.8_p3

url	pkg:ebuild/dev-lang/python@3.11.0_p2
purl	pkg:ebuild/dev-lang/python@3.11.0_p2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.11.0_p2

url	pkg:ebuild/dev-lang/python@3.12.0_alpha1_p2
purl	pkg:ebuild/dev-lang/python@3.12.0_alpha1_p2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.12.0_alpha1_p2

url	pkg:ebuild/dev-python/pypy3@3.8.15_p3
purl	pkg:ebuild/dev-python/pypy3@3.8.15_p3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/pypy3@3.8.15_p3

url	pkg:ebuild/dev-python/pypy3@3.9.15_p3
purl	pkg:ebuild/dev-python/pypy3@3.9.15_p3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/pypy3@3.9.15_p3

url	pkg:ebuild/dev-python/pypy3@3.10.8_p3
purl	pkg:ebuild/dev-python/pypy3@3.10.8_p3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/pypy3@3.10.8_p3

url	pkg:ebuild/dev-python/pypy3@3.11.0_p2
purl	pkg:ebuild/dev-python/pypy3@3.11.0_p2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/pypy3@3.11.0_p2

url	pkg:ebuild/dev-python/pypy3@3.12.0_alpha1_p2
purl	pkg:ebuild/dev-python/pypy3@3.12.0_alpha1_p2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/pypy3@3.12.0_alpha1_p2

url	pkg:ebuild/dev-python/pypy3@7.3.9_p9
purl	pkg:ebuild/dev-python/pypy3@7.3.9_p9
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/pypy3@7.3.9_p9

Affected_packages

url pkg:deb/debian/pypy3@7.0.0%2Bdfsg-3

purl pkg:deb/debian/pypy3@7.0.0%2Bdfsg-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-319d-cv9s-vfd5

vulnerability	VCID-3e3c-zxg5-tbap

vulnerability	VCID-4pwg-3zuw-vkhr

vulnerability	VCID-5wfg-svwf-pff1

vulnerability	VCID-6vcy-cv68-akar

vulnerability	VCID-7a5g-64nt-9ucw

vulnerability	VCID-7hpx-26uv-9ydk

vulnerability	VCID-a8ut-q93v-abcd

vulnerability	VCID-ax7d-ezmn-ykc5

vulnerability	VCID-bk64-4uch-sbff

vulnerability	VCID-cqj6-b197-h3h9

vulnerability	VCID-d597-qumz-qkbn

vulnerability	VCID-fmay-3szm-yfgv

vulnerability	VCID-fq73-mggs-wfde

vulnerability	VCID-kcdq-qj5c-eyh9

vulnerability	VCID-kh9y-m5cm-sfh8

vulnerability	VCID-krbm-6k1j-nbdx

vulnerability	VCID-p2ag-4gfm-6yht

vulnerability	VCID-qcv1-cfw9-wffx

vulnerability	VCID-qmpp-js6p-bub6

vulnerability	VCID-s381-t8ct-f7at

vulnerability	VCID-s61k-2y17-mfff

vulnerability	VCID-spa4-6udk-d3hf

vulnerability	VCID-ssp8-646u-euen

vulnerability	VCID-ujxv-3kht-uuaw

vulnerability	VCID-v31u-e134-h7db

vulnerability	VCID-x1qk-bs7j-63ch

vulnerability	VCID-xnmp-6du3-x3d5

vulnerability	VCID-yp1g-5tv9-v7b7

vulnerability	VCID-yrwy-jvm8-dufj

vulnerability	VCID-znk7-x1g5-uqhn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.0.0%252Bdfsg-3

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1s56-pnpq-wyee

vulnerability	VCID-1wxt-38d4-syfe

vulnerability	VCID-319d-cv9s-vfd5

vulnerability	VCID-3e3c-zxg5-tbap

vulnerability	VCID-3tc9-52hj-3fag

vulnerability	VCID-4pwg-3zuw-vkhr

vulnerability	VCID-4uj7-kjcc-bygq

vulnerability	VCID-5wfg-svwf-pff1

vulnerability	VCID-6vcy-cv68-akar

vulnerability	VCID-7a5g-64nt-9ucw

vulnerability	VCID-a8ut-q93v-abcd

vulnerability	VCID-ax7d-ezmn-ykc5

vulnerability	VCID-bk64-4uch-sbff

vulnerability	VCID-bu2x-a43h-zkd5

vulnerability	VCID-d597-qumz-qkbn

vulnerability	VCID-dkxh-d7ub-9baz

vulnerability	VCID-e3n6-car5-g7bt

vulnerability	VCID-fggj-3rj4-fqcb

vulnerability	VCID-fmay-3szm-yfgv

vulnerability	VCID-fq73-mggs-wfde

vulnerability	VCID-g993-xrdj-cugh

vulnerability	VCID-ga4c-5r7f-xycv

vulnerability	VCID-gfdp-7nqv-zqbv

vulnerability	VCID-ht1k-gap4-2keg

vulnerability	VCID-je2m-h8kf-qff3

vulnerability	VCID-jv9r-eg18-vfef

vulnerability	VCID-kcdq-qj5c-eyh9

vulnerability	VCID-kh9y-m5cm-sfh8

vulnerability	VCID-mbs7-xkjr-7yg1

vulnerability	VCID-mctk-hs85-yfb8

vulnerability	VCID-qcv1-cfw9-wffx

vulnerability	VCID-qmpp-js6p-bub6

vulnerability	VCID-ujxv-3kht-uuaw

vulnerability	VCID-v31u-e134-h7db

vulnerability	VCID-v5d3-c884-6qfc

vulnerability	VCID-xnmp-6du3-x3d5

vulnerability	VCID-yp1g-5tv9-v7b7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

url pkg:deb/debian/python3.9@3.9.2-1

purl pkg:deb/debian/python3.9@3.9.2-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1s56-pnpq-wyee

vulnerability	VCID-1wxt-38d4-syfe

vulnerability	VCID-319d-cv9s-vfd5

vulnerability	VCID-3e3c-zxg5-tbap

vulnerability	VCID-3tc9-52hj-3fag

vulnerability	VCID-4pwg-3zuw-vkhr

vulnerability	VCID-4uj7-kjcc-bygq

vulnerability	VCID-5wfg-svwf-pff1

vulnerability	VCID-6vcy-cv68-akar

vulnerability	VCID-7a5g-64nt-9ucw

vulnerability	VCID-7hpx-26uv-9ydk

vulnerability	VCID-a8ut-q93v-abcd

vulnerability	VCID-ax7d-ezmn-ykc5

vulnerability	VCID-bk64-4uch-sbff

vulnerability	VCID-bu2x-a43h-zkd5

vulnerability	VCID-c54p-ya9f-bfhn

vulnerability	VCID-c8mc-81eh-ufes

vulnerability	VCID-d597-qumz-qkbn

vulnerability	VCID-dgqc-5rnw-t7b6

vulnerability	VCID-dkxh-d7ub-9baz

vulnerability	VCID-e3n6-car5-g7bt

vulnerability	VCID-e6tg-k94s-kyeu

vulnerability	VCID-fmay-3szm-yfgv

vulnerability	VCID-fq73-mggs-wfde

vulnerability	VCID-g1x1-k8x9-mffu

vulnerability	VCID-g993-xrdj-cugh

vulnerability	VCID-ga4c-5r7f-xycv

vulnerability	VCID-gfdp-7nqv-zqbv

vulnerability	VCID-ht1k-gap4-2keg

vulnerability	VCID-jv9r-eg18-vfef

vulnerability	VCID-kcdq-qj5c-eyh9

vulnerability	VCID-kh9y-m5cm-sfh8

vulnerability	VCID-kvtg-747s-yyad

vulnerability	VCID-mbs7-xkjr-7yg1

vulnerability	VCID-mctk-hs85-yfb8

vulnerability	VCID-qcv1-cfw9-wffx

vulnerability	VCID-qmpp-js6p-bub6

vulnerability	VCID-ssp8-646u-euen

vulnerability	VCID-ujxv-3kht-uuaw

vulnerability	VCID-ups7-78uf-z3fj

vulnerability	VCID-v5d3-c884-6qfc

vulnerability	VCID-xnmp-6du3-x3d5

vulnerability	VCID-yp1g-5tv9-v7b7

vulnerability	VCID-yrdj-bce6-hkc4

vulnerability	VCID-yrwy-jvm8-dufj

vulnerability	VCID-znk7-x1g5-uqhn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.9@3.9.2-1

url pkg:rpm/redhat/python3@3.6.8-48.el8_7?arch=1

purl pkg:rpm/redhat/python3@3.6.8-48.el8_7?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e3c-zxg5-tbap

vulnerability	VCID-7a5g-64nt-9ucw

vulnerability	VCID-kcdq-qj5c-eyh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3@3.6.8-48.el8_7%3Farch=1

url pkg:rpm/redhat/python3.9@3.9.14-1?arch=el9

purl pkg:rpm/redhat/python3.9@3.9.14-1?arch=el9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e3c-zxg5-tbap

vulnerability	VCID-dkxh-d7ub-9baz

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.14-1%3Farch=el9

url pkg:rpm/redhat/rh-python38-python@3.8.14-1?arch=el7

purl pkg:rpm/redhat/rh-python38-python@3.8.14-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e3c-zxg5-tbap

vulnerability	VCID-dkxh-d7ub-9baz

vulnerability	VCID-kcdq-qj5c-eyh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-python38-python@3.8.14-1%3Farch=el7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28861

reference_id

reference_type

scores

value	0.01395
scoring_system	epss
scoring_elements	0.80804
published_at	2026-06-11T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80866
published_at	2026-06-14T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80874
published_at	2026-06-13T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80864
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28861

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.gentoo.org/glsa/202305-02

reference_id

202305-02

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://security.gentoo.org/glsa/202305-02

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2120642
reference_id	2120642
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2120642

reference_url

https://github.com/python/cpython/pull/24848

reference_id

24848

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://github.com/python/cpython/pull/24848

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/

reference_id

2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/

reference_id

5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/

reference_id

5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/

reference_url

https://github.com/python/cpython/pull/93879

reference_id

93879

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://github.com/python/cpython/pull/93879

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/

reference_id

DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/

reference_id

HPX4XHT2FGVQYLY2STT2MRVENILNZTTU

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/

reference_id

I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/

reference_id

IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/

reference_url

https://bugs.python.org/issue43223

reference_id

issue43223

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://bugs.python.org/issue43223

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/

reference_id

KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/

reference_id

OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/

reference_id

QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/

reference_url	https://access.redhat.com/errata/RHSA-2022:6766
reference_id	RHSA-2022:6766
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6766

reference_url	https://access.redhat.com/errata/RHSA-2022:8353
reference_id	RHSA-2022:8353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8353

reference_url	https://access.redhat.com/errata/RHSA-2023:0833
reference_id	RHSA-2023:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0833

reference_url	https://access.redhat.com/errata/RHSA-2023:2763
reference_id	RHSA-2023:2763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2763

reference_url	https://access.redhat.com/errata/RHSA-2023:2764
reference_id	RHSA-2023:2764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2764

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/

reference_id

S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/

reference_id

TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/

reference_url	https://usn.ubuntu.com/5629-1/
reference_id	USN-5629-1
reference_type
scores
url	https://usn.ubuntu.com/5629-1/

reference_url	https://usn.ubuntu.com/5888-1/
reference_id	USN-5888-1
reference_type
scores
url	https://usn.ubuntu.com/5888-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/

reference_id

WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/

reference_id

X46T4EFTIBXZRYTGASBDEZGYJINH2OWV

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/

Weaknesses

cwe_id	601
name	URL Redirection to Untrusted Site ('Open Redirect')
description	A web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks.

Exploits

Severity_range_score 6.5 - 7.4

Exploitability 0.5

Weighted_severity 6.7

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3e3c-zxg5-tbap

Vulnerability Instance