Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-vf4m-5c4v-suce
SummaryAn issue has been found in PowerDNS DNSDist before 1.3.3 allowing a remote attacker to craft a DNS query with trailing data such that the addition of a record by dnsdist, for example an OPT record when adding EDNS Client Subnet, might result in the trailing data being smuggled to the backend as a valid record while not seen by dnsdist. This is an issue when dnsdist is deployed as a DNS Firewall and used to filter some records that should not be received by the backend. This issue occurs only when either the 'useClientSubnet' or the experimental 'addXPF' parameters are used when declaring a new backend.
Aliases
0
alias CVE-2018-14663
Fixed_packages
0
url pkg:deb/debian/dnsdist@1.3.3-1?distro=trixie
purl pkg:deb/debian/dnsdist@1.3.3-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@1.3.3-1%3Fdistro=trixie
1
url pkg:deb/debian/dnsdist@1.3.3-3
purl pkg:deb/debian/dnsdist@1.3.3-3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@1.3.3-3
2
url pkg:deb/debian/dnsdist@1.5.1-3?distro=trixie
purl pkg:deb/debian/dnsdist@1.5.1-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mgq-74b9-4bcg
1
vulnerability VCID-3qce-a24m-yue1
2
vulnerability VCID-5781-s1ny-q7ey
3
vulnerability VCID-744k-b7s7-kbh5
4
vulnerability VCID-76w9-hphz-nkg1
5
vulnerability VCID-7xds-447f-qufr
6
vulnerability VCID-a65j-y7z3-fudk
7
vulnerability VCID-afun-gxhy-rbed
8
vulnerability VCID-atx2-yc9p-g3c7
9
vulnerability VCID-c7az-aw1f-4yah
10
vulnerability VCID-chzq-qej6-rkdq
11
vulnerability VCID-fbsf-bbw7-kyah
12
vulnerability VCID-gx8g-nvhj-1kak
13
vulnerability VCID-nrex-hpxg-ekhs
14
vulnerability VCID-pfhu-1qdf-p7d5
15
vulnerability VCID-qc7c-1d8j-hfha
16
vulnerability VCID-rf53-w9k3-7ych
17
vulnerability VCID-szpa-skfv-bygh
18
vulnerability VCID-x5p9-vthx-tud8
19
vulnerability VCID-ytdy-s1ug-dkh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@1.5.1-3%3Fdistro=trixie
3
url pkg:deb/debian/dnsdist@1.7.3-2?distro=trixie
purl pkg:deb/debian/dnsdist@1.7.3-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mgq-74b9-4bcg
1
vulnerability VCID-3qce-a24m-yue1
2
vulnerability VCID-5781-s1ny-q7ey
3
vulnerability VCID-744k-b7s7-kbh5
4
vulnerability VCID-76w9-hphz-nkg1
5
vulnerability VCID-7xds-447f-qufr
6
vulnerability VCID-a65j-y7z3-fudk
7
vulnerability VCID-afun-gxhy-rbed
8
vulnerability VCID-atx2-yc9p-g3c7
9
vulnerability VCID-c7az-aw1f-4yah
10
vulnerability VCID-chzq-qej6-rkdq
11
vulnerability VCID-fbsf-bbw7-kyah
12
vulnerability VCID-gx8g-nvhj-1kak
13
vulnerability VCID-nrex-hpxg-ekhs
14
vulnerability VCID-pfhu-1qdf-p7d5
15
vulnerability VCID-qc7c-1d8j-hfha
16
vulnerability VCID-rf53-w9k3-7ych
17
vulnerability VCID-szpa-skfv-bygh
18
vulnerability VCID-x5p9-vthx-tud8
19
vulnerability VCID-ytdy-s1ug-dkh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@1.7.3-2%3Fdistro=trixie
4
url pkg:deb/debian/dnsdist@1.9.10-1%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/dnsdist@1.9.10-1%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mgq-74b9-4bcg
1
vulnerability VCID-3qce-a24m-yue1
2
vulnerability VCID-744k-b7s7-kbh5
3
vulnerability VCID-7xds-447f-qufr
4
vulnerability VCID-a65j-y7z3-fudk
5
vulnerability VCID-afun-gxhy-rbed
6
vulnerability VCID-atx2-yc9p-g3c7
7
vulnerability VCID-c7az-aw1f-4yah
8
vulnerability VCID-chzq-qej6-rkdq
9
vulnerability VCID-fbsf-bbw7-kyah
10
vulnerability VCID-gx8g-nvhj-1kak
11
vulnerability VCID-nrex-hpxg-ekhs
12
vulnerability VCID-pfhu-1qdf-p7d5
13
vulnerability VCID-qc7c-1d8j-hfha
14
vulnerability VCID-rf53-w9k3-7ych
15
vulnerability VCID-szpa-skfv-bygh
16
vulnerability VCID-x5p9-vthx-tud8
17
vulnerability VCID-ytdy-s1ug-dkh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@1.9.10-1%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/dnsdist@2.0.2-1?distro=trixie
purl pkg:deb/debian/dnsdist@2.0.2-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3qce-a24m-yue1
1
vulnerability VCID-atx2-yc9p-g3c7
2
vulnerability VCID-c7az-aw1f-4yah
3
vulnerability VCID-gx8g-nvhj-1kak
4
vulnerability VCID-rf53-w9k3-7ych
5
vulnerability VCID-szpa-skfv-bygh
6
vulnerability VCID-x5p9-vthx-tud8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@2.0.2-1%3Fdistro=trixie
6
url pkg:deb/debian/dnsdist@2.0.3-1?distro=trixie
purl pkg:deb/debian/dnsdist@2.0.3-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mgq-74b9-4bcg
1
vulnerability VCID-744k-b7s7-kbh5
2
vulnerability VCID-7xds-447f-qufr
3
vulnerability VCID-a65j-y7z3-fudk
4
vulnerability VCID-afun-gxhy-rbed
5
vulnerability VCID-chzq-qej6-rkdq
6
vulnerability VCID-fbsf-bbw7-kyah
7
vulnerability VCID-nrex-hpxg-ekhs
8
vulnerability VCID-pfhu-1qdf-p7d5
9
vulnerability VCID-qc7c-1d8j-hfha
10
vulnerability VCID-ytdy-s1ug-dkh7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@2.0.3-1%3Fdistro=trixie
7
url pkg:deb/debian/dnsdist@2.0.4-1?distro=trixie
purl pkg:deb/debian/dnsdist@2.0.4-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@2.0.4-1%3Fdistro=trixie
8
url pkg:deb/debian/dnsdist@2.0.5-1?distro=trixie
purl pkg:deb/debian/dnsdist@2.0.5-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@2.0.5-1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/dnsdist@1.1.0-2%2Bdeb9u1
purl pkg:deb/debian/dnsdist@1.1.0-2%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8bsm-ve4h-cbeb
1
vulnerability VCID-ggta-dn3b-d3dd
2
vulnerability VCID-vf4m-5c4v-suce
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/dnsdist@1.1.0-2%252Bdeb9u1
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14663
reference_id
reference_type
scores
0
value 0.00016
scoring_system epss
scoring_elements 0.03771
published_at 2026-04-01T12:55:00Z
1
value 0.00016
scoring_system epss
scoring_elements 0.03811
published_at 2026-04-02T12:55:00Z
2
value 0.00016
scoring_system epss
scoring_elements 0.03824
published_at 2026-04-04T12:55:00Z
3
value 0.00016
scoring_system epss
scoring_elements 0.03839
published_at 2026-04-07T12:55:00Z
4
value 0.00016
scoring_system epss
scoring_elements 0.03844
published_at 2026-04-08T12:55:00Z
5
value 0.00016
scoring_system epss
scoring_elements 0.03868
published_at 2026-04-09T12:55:00Z
6
value 0.00016
scoring_system epss
scoring_elements 0.03831
published_at 2026-04-11T12:55:00Z
7
value 0.00016
scoring_system epss
scoring_elements 0.03812
published_at 2026-04-12T12:55:00Z
8
value 0.00016
scoring_system epss
scoring_elements 0.03785
published_at 2026-04-13T12:55:00Z
9
value 0.00016
scoring_system epss
scoring_elements 0.03765
published_at 2026-04-16T12:55:00Z
10
value 0.00016
scoring_system epss
scoring_elements 0.03776
published_at 2026-04-18T12:55:00Z
11
value 0.00016
scoring_system epss
scoring_elements 0.039
published_at 2026-04-21T12:55:00Z
12
value 0.00016
scoring_system epss
scoring_elements 0.03911
published_at 2026-04-24T12:55:00Z
13
value 0.00016
scoring_system epss
scoring_elements 0.03914
published_at 2026-04-26T12:55:00Z
14
value 0.00016
scoring_system epss
scoring_elements 0.0396
published_at 2026-04-29T12:55:00Z
15
value 0.00016
scoring_system epss
scoring_elements 0.03913
published_at 2026-05-05T12:55:00Z
16
value 0.00016
scoring_system epss
scoring_elements 0.03929
published_at 2026-05-07T12:55:00Z
17
value 0.00016
scoring_system epss
scoring_elements 0.03963
published_at 2026-05-09T12:55:00Z
18
value 0.00016
scoring_system epss
scoring_elements 0.03965
published_at 2026-05-11T12:55:00Z
19
value 0.00016
scoring_system epss
scoring_elements 0.0397
published_at 2026-05-12T12:55:00Z
20
value 0.00016
scoring_system epss
scoring_elements 0.03997
published_at 2026-05-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14663
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14663
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14663
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913231
reference_id 913231
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913231
Weaknesses
Exploits
Severity_range_scorenull
Exploitability0.5
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-vf4m-5c4v-suce